Attacktive Directory — TryHackMe Walkthrough
Tags
attack-pattern: Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Pass The Hash - T1550.002 Tool - T1588.002 Pass The Hash - T1075 Sudo - T1169
Show in Graph
Common Information
Type Value
UUID 05a078cc-19b3-446a-9bec-910ebd61d65f
Fingerprint a750047065b38610
Analysis status DONE
Considered CTI value -2
Text language
Published Dec. 20, 2024, 12:25 a.m.
Added to db Dec. 21, 2024, 4:07 a.m.
Last updated Dec. 26, 2024, 12:14 a.m.
Headline Attacktive Directory — THM Walkthrough
Title Attacktive Directory — TryHackMe Walkthrough
Detected Hints/Tags/Attributes 35/1/22
Source URLs
Redirection Url
Details Source https://medium.com/@alt123/attacktive-directory-tryhackme-walkthrough-3b95d3ba55d6?source=rss------cybersecurity-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 29 
getnpusers.py
Details Domain 102 
secretsdump.py
Details Domain 45 
psexec.py
Details Email 1 
james@spookysec.local
Details Email 6 
backup@spookysec.local
Details Email 1 
backup2517860@spookysec.local
Details File 306 
robots.txt
Details File 8 
userlist.txt
Details File 26 
getnpusers.py
Details File 1 
kerbrute_output.txt
Details File 1 
validuser.txt
Details File 3 
passwordlist.txt
Details File 67 
hash.txt
Details File 3 
backup_credentials.txt
Details File 99 
secretsdump.py
Details File 42 
psexec.py
Details File 1 
c:\users dir c:\users\svc-admin\desktop type c:\users\svc-admin\desktop\user.txt
Details File 1 
c:\users\backup\desktop type c:\users\backup\desktop\privesc.txt
Details File 1 
c:\users\administrator\desktop type c:\users\administrator\desktop\root.txt
Details md5 41 
aad3b435b51404eeaad3b435b51404ee
Details md5 7 
0e0363213e37b94221497260b0bcb4fc
Details IPv4 1 
10.10.197.68