Pentesters

SEARCH

CATEGORIES

TAGS

    Attack Paths

    Hack The Box – Active

    September 5, 2021
    NodeZero compromises the "Active" machine on Hack The Box by chaining classic Active Directory vulnerabilities: GPP password exposure, Kerberoasting, and CVE-2020-1472 (ZeroLogon). This advanced walkthrough builds on earlier feedback and demonstrates multiple escalation paths to Domain Admin.
    Read More →
    NodeZero vs Hack the Box Active
    Attack Blogs

    Product Updates from our CTO

    August 27, 2021
    The engineering team has been working tirelessly to improve the "what to wow" user experience, add more attack content, add indicators of best practices and improve analytical insights. Improving our "what to wow" user experience – In security, there are two types of findings: critical problems that require you skip lunch, or cancel plans with…
    Read More →
    Impacts tab in NodeZero
    Attack Paths

    Hack the Box – Blue

    August 27, 2021
    NodeZero exploited EternalBlue on HTB’s Blue machine to gain system access and dump credentials, showing the risk of unpatched SMB vulnerabilities.
    Read More →
    NodeZero vs Hack-the-Box Blue