TryHackMe Ledger Walkthrough | Certipy Exploitation with ldap-shell

In this video, we walk through the Ledger room on TryHackMe, focusing on Active Directory attacks using certipy. If you're learning ethical hacking, OSCP, or just love seeing machines get popped — this one’s for you. 📂 Scripts, and Commands: https://github.com/strikoder/CTFS/blob/main/THM/Ledger 🏠 Room Link: https://tryhackme.com/room/ledger -------- ⏱️ Timestamps: 00:00 – Intro & Target Overview 01:18 – Enumeration (No Creds) 05:18 – Description Grepping for Password Spraying 07:48 – Password Spraying Attack 08:40 – Authenticated Enumeration 09:50 – BloodHound Enumeration & Analysis 15:32 – Certipy Enumeration 21:31 – Certipy Authentication via ldap-shell 22:52 – Creating a New Domain Admin 25:40 – Flags & Wrap-Up -------- Follow me for more real-world hacking walkthroughs, live streams, and cert prep content 👇 🎥 Streams & Walkthroughs YouTube: https://www.youtube.com/@strikoder Twitch: https://www.twitch.tv/strikoder 📢 Updates & Short Content Telegram: https://t.me/strikoder Instagram: https://www.instagram.com/strikoder/ TikTok: https://www.tiktok.com/@strikoder 💬 Community & Discussions Discord Server: https://discord.gg/Jz5ejK4Mc9 X (Twitter): https://x.com/Strikoder 💻 Projects & Labs GitHub: https://github.com/strikoder Hack The Box (to give respect): https://app.hackthebox.com/profile/1872370 📨 Official Contact LinkedIn: https://www.linkedin.com/in/strikoder Email: [email protected] More videos coming soon on PNPT, and OSCP prep. Stay tuned, and thanks for the support! #ledger #pt1 #tryhackme #activedirectory #windows #ethicalhacking #cybersecurity #pentesting #ctf #infosec #pentesting #enumeration #terminal #bugbounty #RedTeam #privilegeescalation #windowshacking #networksecurity #hackingtools #cyberseclabs #hackermindset #capturetheflag #Nmap #strikoder