Shadow Credentials
Filtering for "Shadow Credentials"
Remove filterTombwatcher
A medium Active Directory Windows machine fom Hack The Box features a series of ACL abuse to get access to WinRM on the target, and then restoring a deleted account to exploit an ADCS certificate template vulnerable to ESC15 gain access to the domain admin.