dalemazza’s blog

Ligolo-ng - Pivot the right way

Recently I completed Dante which is a pro lab on hack the box. During this challenge lab there were several pivot points that gave you access to the internal network. My old method of using chisel here was really annoying me due to its limitations with using SOCKS. After some research I found these tools to be the best of both worlds.

CRTE Review

Recently I passed the Certified Red Team Expert certification by Pentester Academy. This was a really good course that pushes you to the limit of attacking Active Directory within a realistic fully patched and AV on environment. This course throws you in the deep end with no lab manual and requires you to conduct research on your findings. Here are my thoughts on the course and exam along with some tips.

CRTP Review

A couple of weeks back I started the Pentester academy Certified Red Team Professional course. The course ended up being the best course I have taken to date, teaching all manor of active directory attacks. The premise of the course is that it is taught on a fully patched network with AV turned on along with real time protection. The course focuses on AD misconfigs and how to abuse them.

THM - Team Walkthrough

Platform: THM
Difficulty: Medium
Flags: 3

This is a box I personally made, this is my first time making content and hope you all enjoy it!!

THM - Skynet Walkthrough

Platform: THM
Difficulty: EASY
Flags: 5

This is an easy rated room on Try Hack Me. This box was simple with a tricky to spot priv esc method.

THM - Retro Walkthrough

Platform: THM
Difficulty: HARD
Flags: 3

This is a room on Try Hack Me. It is a full Pwn box meaning you have to go from unauthenticated to system privileges to finish the challenge, gaining 3 flags along the way.