Blue WriteUp | HackTheBox | Manual Exploitation

Hi everyone today I will solve the machine called Blue which is really entry-level & instructional machine for those who are newbie.

1) Reconnaisance

As you know, I like discovering web apps as a initial step. However, I could not find any web app on that machine. Before I start our default pentesting methodology, I would like to talk about a bit on Windows/Active Directory concepts for this machine.

1. For this machine we have to understand the port structure of our machine. As you know we have a variety of RPC located in different ports. In short, RPC allows program to execute commands remotely.

nmap -sV -sC ip address or nmap -sV — script vuln

2. To decide on which services do we have to hook at first, I searched through

139,445 - Pentesting SMB