- Published on
Early recon reveals a web-based LDAP Server that allows for exfiltrating sensitive credentials and gaining user access, escalating privileges by identifying the user is a member of the Server Operators group
Server-operators
All Posts
- machine (11)
- windows (9)
- active-directory (9)
- genericall (4)
- linux (2)
- genericwrite (2)
- writeowner (2)
- shadow-credentials (2)
- pwn (1)
- malloc (1)
- pwnablexyz (1)
- sqlpad (1)
- docker-jail (1)
- port-forwarding (1)
- chrome-pentest (1)
- froxlor (1)
- daloradius (1)
- mosh-server (1)
- forcechangepassword (1)
- pwsafe2john (1)
- dcsync (1)
- rid-brute (1)
- sebackupprivilege (1)
- mssql (1)
- esc4 (1)
- esc1 (1)
- time-skew (1)
- esc16 (1)
- dpapi-credentials (1)
- pass-back-attack (1)
server-operators (1)
- reverse-engineering (1)
- rbcd (1)
- s4u2self (1)
- s4u2proxy (1)
- laps (1)
- pfx2john (1)
- ssl (1)
- readlapspassword (1)
- tombstone (1)
- readgmsapassword (1)
- writespn (1)
- kerberoast (1)
- addself (1)
- esc15 (1)