#34 HackTheBox Active Machine | GPP Password & Kerberoasting Attack Chain
✅ Windows Active Directory domain controller reconnaissance and service enumeration ✅ SMB share analysis and anonymous authentication ✅ Group Policy Prefere...
RD112
98 views • Sep 24, 2025
About this video
✅ Windows Active Directory domain controller reconnaissance and service enumeration
✅ SMB share analysis and anonymous authentication
✅ Group Policy Preferences (GPP) vulnerability identification and exploitation
✅ Groups.xml file discovery and sensitive credential extraction methods
✅ gpp-decrypt tool usage for reversing Group Policy password encryption
✅ Domain user credential validation and share access privilege escalation
✅ Service Principal Name (SPN) enumeration and Kerberos authentication analysis
✅ Kerberoasting attack implementation using Impacket's GetUserSPNs.py
✅ TGS-REP ticket capture and hash extraction for offline password attacks
✅ Hashcat usage for Kerberos hash cracking
✅ Domain administrator authentication using PSExec for complete system compromise
⚠️ Legal Disclaimer: This content is for educational purposes only. Always ensure you have proper authorization before testing on any systems.
Music track: AI AGENTS by Tetuano
Source: https://freetouse.com/music
No Copyright Music (Free Download)
#hackthebox #htb #active #windows #activedirectory #ad
#pentesting #easy box #smb enumeration
#grouppolicypreferences #gpp #groups.xml
#gpp-decrypt #replicationshare #anonymousaccess
#kerberoastingattack #serviceprincipalnames #spn #tgs-rep
#getuserspns.py #impacket #hashcat #passwordcracking #johntheripper
#kerberoshash #administratorprivilegeescalation #psexec.py
#domaincompromise #svc_tgs #cybersecurity
✅ SMB share analysis and anonymous authentication
✅ Group Policy Preferences (GPP) vulnerability identification and exploitation
✅ Groups.xml file discovery and sensitive credential extraction methods
✅ gpp-decrypt tool usage for reversing Group Policy password encryption
✅ Domain user credential validation and share access privilege escalation
✅ Service Principal Name (SPN) enumeration and Kerberos authentication analysis
✅ Kerberoasting attack implementation using Impacket's GetUserSPNs.py
✅ TGS-REP ticket capture and hash extraction for offline password attacks
✅ Hashcat usage for Kerberos hash cracking
✅ Domain administrator authentication using PSExec for complete system compromise
⚠️ Legal Disclaimer: This content is for educational purposes only. Always ensure you have proper authorization before testing on any systems.
Music track: AI AGENTS by Tetuano
Source: https://freetouse.com/music
No Copyright Music (Free Download)
#hackthebox #htb #active #windows #activedirectory #ad
#pentesting #easy box #smb enumeration
#grouppolicypreferences #gpp #groups.xml
#gpp-decrypt #replicationshare #anonymousaccess
#kerberoastingattack #serviceprincipalnames #spn #tgs-rep
#getuserspns.py #impacket #hashcat #passwordcracking #johntheripper
#kerberoshash #administratorprivilegeescalation #psexec.py
#domaincompromise #svc_tgs #cybersecurity
Tags and Topics
Browse our collection to discover more content in these categories.
Video Information
Views
98
Likes
1
Duration
3:54
Published
Sep 24, 2025
Related Trending Topics
LIVE TRENDSRelated trending topics. Click any trend to explore more videos.
No specific trending topics match this video yet.
Explore All Trends