Skip to main content

Recently Updated Pages

Token Impersonation

Active Directory Post Exploitation: Attacks

Overview Tokens are temporary keys that allow a user to perform actions on a system or network w...

Updated 4 months ago by 0xBEN

Pass the Hash

Active Directory Post Exploitation: Attacks

Overview Dumped the SAM or LSA and now have hashes for domain or a local users. Use the hash and...

Updated 4 months ago by 0xBEN

Pass the Password

Active Directory Post Exploitation: Attacks

Overview Cracked a hash or discovered a password for a domain user. Use the password and crackma...

Updated 4 months ago by 0xBEN

NFS: LXC Backups Permissions Issue (Synology)

Proxmox

The Issue INFO: starting new backup job: vzdump 204 --remove 0 --compress zstd --mode snapshot -...

Updated 5 months ago by 0xBEN

Defining the Inventory

Ansible Automation with Ansible

Defining the Inventory The inventory is everything when it comes to Ansible. Your inventory ...

Updated 5 months ago by 0xBEN

Defining Group Variables and Protecting Secrets

Ansible Automation with Ansible

Group Variables Back on Defining the Inventory, you may remember that we broke the inventory up i...

Updated 5 months ago by 0xBEN

Troubleshooting

Fleet DM FleetDM On Debian 11

Hosts Enrolling with Empty Data In my testing, the way to reproduce the issue is: Remove a ...

Updated 5 months ago by 0xBEN

Upgrading Fleet Versions

Fleet DM FleetDM On Debian 11

Stop the Server First, stop any running FleetDM processes. I have systemd controlling my FleetDM...

Updated 5 months ago by 0xBEN

Adding Default Queries Library

Fleet DM FleetDM On Debian 11

Set API Context SSH into FleetDM management server Set the API address: fleetctl config set -...

Updated 5 months ago by 0xBEN

Installing FleetDM Management Server

Fleet DM FleetDM On Debian 11

Create Debian 11 Host apt update && apt upgrade -y && apt install -y sudo gnupg net-tools dn...

Updated 5 months ago by 0xBEN

Lesson Plan

PJPT & PNPT Study Group Lessons Session 10: Jan. 18, 2024

Accompanying Presentation The PJPT Study Group is hosted by my friend and fellow Discord mod, Sh...

Updated 5 months ago by 0xBEN

Active Directory Methodology

PJPT & PNPT Study Group Lessons Session 8: Jan. 8, 2024

Active Directory Pentest Types Given the massive attack surface that Active Directory presents, ...

Updated 6 months ago by 0xBEN

Active Directory Overview

PJPT & PNPT Study Group Lessons Session 8: Jan. 8, 2024

The Big Picture To change the way you attack (and defend) Active Directory networks, change the ...

Updated 6 months ago by 0xBEN

Debian-Based Distributions

Linux Administration Joining Linux Hosts to Active Directory...

Install Prerequisite Packages # When prompted... # Modify smb.conf to use WINS settings from DH...

Updated 6 months ago by 0xBEN

Add Your Own TLS Certificates to Web Servers

Wazuh

Context This assumes that my domain is contoso.org I've generated a *.contoso.org certificate fo...

Updated 6 months ago by 0xBEN

Brute Force HTTP Basic Authentication with Hydra

Hydra Brute Force Web Logins with Hydra

Process Overview The basic process to begin brute forcing web logins with Hydra goes like this: ...

Updated 7 months ago by 0xBEN

Hydra Overview

Hydra

Understanding Hydra Help Viewing Hydra Modules Print the hydra help output hydra -h Notice th...

Updated 7 months ago by 0xBEN

Clustering: Same ZFS Pool on All Nodes

Proxmox

Example Environment I keep my VM and container guest disks stored on a ZFS share attached to...

Updated 7 months ago by 0xBEN

Computer Networking: Encapsulation and Decapsulation

Computer Networking Computer Networking Fundamentals

Updated 7 months ago by 0xBEN

Computer Networking: MAC Addressing and ARP

Computer Networking Computer Networking Fundamentals

Updated 7 months ago by 0xBEN