Vulnlab Lock WriteupReconLet’s begin with a traditional Nmap scan to gather information about open ports and the services running on them 1nmap -sCV -Pn 10.10.80.147 We found interesting information

Vulnlab Retro WriteupOverviewRetro is an easy-difficulty machine created by r0BIT, starting by enumerating SMB shares and finding notes about pre-created computer accounts to exploit the ADCS ESC1 tem

OverviewKerberoasting is a post-exploitation or privilege escalation attack that targets the Kerberos protocol in order to obtain the password hash of an account in the Active Directory that has Servi