Home » Tags

As-Rep-Roasting

HTB Blackfield Writeup — LSASS Dump & VSS Shadow Copies (2026)

Hard AD box. AS-REP Roasting → BloodHound → ForceChangePassword → lsass.DMP → SeBackupPrivilege → VSS snapshot → NTDS.dit → Domain Admin.

March 24, 2026 · 4 min

HTB Forest Writeup — AS-REP Roasting, BloodHound & DCSync (2026)

Second AD box. AS-REP Roasting with no creds, BloodHound attack path through 5 nested groups, ACL abuse to DCSync.

March 24, 2026 · 3 min