Categories
active directory

🎵 “I’ve Got a Golden Ticket” 🎵

There are a couple of different ways that a Golden Ticket can be created and used when attacking an Active Directory environment. One of which is through the use of Impacket’s ticketer.py. The nice thing about this script is that it allows you to attack from a Linux system, rather than using Mimikatz from a […]

Categories
red teaming

Pivoting Down the Rabbit Hole

I remember one of the first security competitions I did when in school, our team was beat out by the team that was able to pivot within the environment of intentionally vulnerable systems. Since then I’ve been able to learn some of ways that you can move between systems. This post documents a few different […]