avatar
Articles
40
Tags
21
Categories
4
Home
Archives
Tags
Categories
LogoWelcome to 0pwn0's BlogHackTheBox - Hercules Writeup (Protected) Back to Home
Search
Home
Archives
Tags
Categories

HackTheBox - Hercules Writeup (Protected)

Created2025-10-20|Updated2025-12-05|HackTheBox
|Post Views:
Author: 0pwn0
Link: https://0pwn0.github.io/2025/10/20/HackTheBox-Hercules-WriteUp/
Copyright Notice: All articles on this blog are licensed under CC BY-NC-SA 4.0 unless otherwise stated.
hacktheboxwriteupwindowsinsane
cover of previous post
Previous
AD ACLs Cheatsheet
GenericWrite on User Update object’s attributes Targeted Kerberoasting1targetedKerberoast.py -d domain --dc-ip ip -u username -p password --dc-host dc --request-user target_user 1hashcat -m 13100 -a 0 <hash_file> rockyou.txt --force 1john <hash_file> --wordlist=rockyou.txt ShadowCredentials1certipy shadow auto -u username@domain -p password -account target_user -dc-ip ip Using Kerberos 1certipy shadow auto -username username@domain -k -account target_user -dc-ip ip GenericALL Ful...
cover of next post
Next
OffSec - The Gaunlet Full Writeup (Protected & Updating)
Related Articles
cover
2025-03-31
HackTheBox - DarkCorp Writeup
IntroductionThis technical writeup details the penetration test of the “DarkCorp” machine from Hack The Box, rated as Insane difficulty. The assessment demonstrates a sophisticated attack chain involving a critical XSS vulnerability in Roundcube webmail, SQL injection in a dashboard application, Active Directory certificate services exploitation, and various privilege escalation techniques. Attack NarrativeThe following sections provide a detailed chronological account of the penetration tes...
cover
2025-05-21
HackTheBox - Infiltrator Writeup
IntroductionInfiltrator is an Insane-difficulty Windows Active Directory machine that demonstrates a sophisticated attack chain involving username enumeration, Kerberos exploitation, Windows Remote Management (WinRM), and Active Directory certificate services abuse. The machine showcases real-world attack scenarios including password cracking, privilege escalation through Active Directory permissions, and exploitation of misconfigured certificate templates. Attack NarrativeThe penetration te...
cover
2025-11-04
HackTheBox - AWS Fortress Writeup (Protected)
cover
2025-11-09
HackTheBox - NanoCorp Writeup (Protected)
cover
2025-05-18
HackTheBox - Puppy Writeup [VIE Language]
Về thông tin Thông tin chung IP Address : 10.10.11.70 Hệ điều hành (Distribution) Microsoft Windows Server 2022 Standard Kernel OS Version 10.0.20348 N/A Build 20348 Phần mềm Web Server và Version Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP) Port Available 53, 88, 111, 135, 139, 389, 445, 464, 593, 636, 2049, 3260, 3268, 3269, 5985 Enumeration (Thu thập dữ liệu)1As is common in real life pentests, you will start the Puppy box with credentials for the following account: lev...
cover
2025-07-06
HackTheBox - RustyKey Writeup
IntroductionPurposeThe purpose of this assessment is to evaluate the security of the RustyKey domain by simulating a real-world cyber attack. The goal is to identify vulnerabilities that malicious attackers could exploit to gain unauthorized access, escalate privileges, and compromise sensitive information, thereby providing detailed information about the security weaknesses of the environment. Scope and ObjectivesThe scope of the assessment is limited to the RustyKey domain, a simulated env...
avatar
0pwn0
A blog about CTF challenges, security research, and cybersecurity topics
Articles
40
Tags
21
Categories
4
Follow Me
Recent Posts
ESC15 Offensive Deep-Dive Cheatsheet 2025 - Vietnamese Language
ESC15 Offensive Deep-Dive Cheatsheet 2025 - Vietnamese Language2025-11-28
HackTheBox - NanoCorp Writeup (Protected)
HackTheBox - NanoCorp Writeup (Protected)2025-11-09
HackTheBox - AWS Fortress Writeup (Protected)
HackTheBox - AWS Fortress Writeup (Protected)2025-11-04
HackTheBox - Novitas Writeup (Protected)
HackTheBox - Novitas Writeup (Protected)2025-11-01
AD ACLs Cheatsheet
AD ACLs Cheatsheet2025-10-23
© 2025 By 0pwn0Framework Hexo 8.0.0|Theme Butterfly 5.5.1
Search
Loading Database