Skip to main content

Penetration Testing

TryHackMe: Enumeration & Brute Force Room Walkthrough

Overview #

This walkthrough documents my experience completing the Enumeration & Brute Force room on TryHackMe. The room provides hands-on experience with various enumeration techniques, brute force attacks, and web application vulnerability exploitation. This write-up details my approach to each task and the key learning points along the way.

IPv6 DNS Takeover with MITM6 in an Active Directory Environment

Table of Contents #

  1. Introduction
  2. Understanding IPv6 DNS Takeover
  3. Mitigation Strategies
  4. Demonstration Steps
  5. Conclusion

Introduction #

In this blog post, I will walk you through a demonstration of an IPv6 DNS takeover attack using the mitm6 (Man in the Middle for IPv6) tool in an Active Directory (AD) pentesting environment. This type of attack exploits weaknesses in the network’s handling of IPv6, allowing an attacker to become a Man-in-the-Middle (MITM) and relay NTLM authentication requests to a Domain Controller (DC).

Understanding SMB Relay Attacks and Mitigation Techniques

Introduction #

In the world of network security, understanding various attack vectors is critical to safeguarding systems and data. One such attack is the SMB (Server Message Block) Relay attack, which exploits vulnerabilities in the SMB protocol commonly used in Windows environments. This article will explore what an SMB Relay attack is, the steps involved in executing such an attack, and mitigation strategies to reduce the associated risks. Additionally, I will include screenshots and steps from my lab demonstration using the Responder tool and NTLM Relay X.

Understanding LLMNR Poisoning and Mitigation Techniques

Introduction #

In this blog post, I discuss a common network attack called Link-Local Multicast Name Resolution (LLMNR) poisoning. This type of attack can be highly effective in capturing NTLMv2 hashes, which can then be used to gain unauthorized access to systems in a Windows environment. I will also share insights on how to mitigate this this type of vulnerability attack, ensuring your network remains secure. To illustrate this attack, I have included screenshots from my recent lab demonstration where I successfully captured NTLMv2 hashes using Responder.

My Journey to eJPT Certification: Insights and Tips for Success

Earning the INE Security Junior Penetration Tester (eJPT) certification has been a significant milestone in my cybersecurity journey. In this blog post, I’ll share my experience with the eJPT exam and the strategies that helped me succeed. Whether you’re considering this certification or preparing for the exam, I hope my insights will be useful for your own path in ethical hacking and penetration testing.