Cybersecurity
Manager- Hackthebox
I started with a full port scan using my Nmap automation script. https://github.com/HutchSec/portScan The scan revealed several interesting services including SMB, MSSQL, WinRM, and HTTP. SMB Enumeration — RID Cycling Anonymous SMB access was enabled, which allowed RID cycling attacks using Impacket’s lookupsid.py. This exposed valid domain usernames. Password Spraying Read more