/tags/easy/ Recent content in Easy on Nitel's Red Logs Hugo -- gohugo.io en Mon, 12 Jan 2026 12:33:00 +0000 /posts/cicada/ Mon, 12 Jan 2026 12:33:00 +0000 /posts/cicada/ An easy-rated HTB Active Directory machine. The attack chain involves SMB guest enumeration, RID brute-forcing, password spraying, LDAP dumping, and finally abusing SeBackupPrivilege to extract the Administrator hash. /posts/busqueda/ Thu, 08 Jan 2026 11:57:00 +0000 /posts/busqueda/ A walkthrough of HackTheBox Searcher — exploiting CVE-2023-43364 (Searchor 2.4.0 RCE) for initial access, then leveraging a path injection vulnerability in a privileged Python script to escalate to root.