We consider Reel a Windows Active Directory machine and a hard box on HTB. This Reel HackTheBox Walkthrough showcases its uniqueness, featuring a phishing scenario that we rarely find in other machines. We start by enumerating the FTP service and find some files that reveal a user’s email address. Then, we send a phishing email with an attachment that grants us initial access when clicked. After gaining a foothold, we achieve privilege escalation by exploiting permissions in the Active Directory infrastructure.
You have not unlocked this post's content yet. Please reply to this thread to unlock the content.
