HTB CDSA
Certified Defensive Security Analyst by Academy. Get started now!
Machine Synopsis
Reel2 is a Hard difficulty Windows machine that features an open source Social Networking application, which allows us to find usernames. Outlook Web Access access can be gained by performing a password spraying attack the OWA endpoint. A password hash can be captured and cracked by performing a spear phishing attack, which allows us to gain a foothold on the server. Using PowerShell functions, JEA restrictions can be bypassed. Enumerating stickynotes processes reveals a set of credentials which can be used to move laterally. Exploiting a vulnerable JEA function allows us to read files as the administrator.
Machine Matrix