HackTheBox - Breach Walkthrough | AD Hacking

In this walkthrough of the HTB Breach box, we start with guest SMB access and write to a share to drop a malicious .lnk file, capturing an NTLMv2 hash. After cracking a weak password, we find a kerberoastable MSSQL service account, crack it, and perform a Silver Ticket attack. Using the compromised ticket, we abuse SeImpersonatePrivilege to escalate to full admin access. I also explain the methodology, attack flow, and how to properly remediate each vulnerability at every stage. This video is for Educational purposes only