Great timing bro I was just struggling with an academy module that had a section on thick client application and even with the module walking you through everything it was still a challenge, so clearly I need to focus some time on thick client applications and reverse engineering
@@ByteSizedSechopefully doing those skill assessments tomorrow. Getting through the java decompiling section drained me lol. I would never have known what to do in that situation without the module walking you through it so that was a bit disheartening, but just means I need to get better at reading code at the very least to understand any reverse engineered applications.m Where did you find that python decryption script, that seems handy to have on my machine lol
I felt absolutely the same! Java definitely is a bitch, but from now, I'll just cycle back to the module as soon as I see anything to do with Java. After doing Support the linux way using dotnet you get the password by inspecting the ldap requests over wireshark so I pwned the machine the first time that way. After then reading a writeup online, I saw if you do it the Windows way (more fun, and a better showcase of thick application testing, hence why I used it in the video) then you have to decrypt it. And in that writeup, it also showed the decryption method. 0xdf.gitlab.io/2022/12/17/htb-support.html#recover-ldap-password Here it is.
There are a lot of videos out there about that. I dont think I have much to contribute to that. I want to keep it technical and document my own journey at the moment. But companies want what they've always wanted: -honesty -hard work -loyalty -rigor -skill
![Hacking Soccer [HackTheBox Walkthrough]](http://i.ytimg.com/vi/hf1ktlrO98Q/mqdefault.jpg)
![Hacking Soccer [HackTheBox Walkthrough]](/img/tr.png)
![Hacking Blackgate [Proving-Grounds Walkthrough]](http://i.ytimg.com/vi/Gm7QiM5_fjc/mqdefault.jpg)
![Hacking Escape [HackTheBox Walkthrough]](/img/n.gif)
NOTE: Typo at 1:15:00 during the Constrained Delegation explanation it still says, "Unconstrained" ... mistakes were made lol
thank you jimmy for this video :)
My pleasure! Thank you for checking out my content, glad you like it!
Great video.
Glad you enjoyed it, thank you very much 🙏🏾
Great timing bro I was just struggling with an academy module that had a section on thick client application and even with the module walking you through everything it was still a challenge, so clearly I need to focus some time on thick client applications and reverse engineering
That makes two of us. It wasn't an easy module. Hope in the end, you got through with it tho !
@@ByteSizedSechopefully doing those skill assessments tomorrow. Getting through the java decompiling section drained me lol. I would never have known what to do in that situation without the module walking you through it so that was a bit disheartening, but just means I need to get better at reading code at the very least to understand any reverse engineered applications.m
Where did you find that python decryption script, that seems handy to have on my machine lol
I felt absolutely the same! Java definitely is a bitch, but from now, I'll just cycle back to the module as soon as I see anything to do with Java.
After doing Support the linux way using dotnet you get the password by inspecting the ldap requests over wireshark so I pwned the machine the first time that way. After then reading a writeup online, I saw if you do it the Windows way (more fun, and a better showcase of thick application testing, hence why I used it in the video) then you have to decrypt it. And in that writeup, it also showed the decryption method.
0xdf.gitlab.io/2022/12/17/htb-support.html#recover-ldap-password
Here it is.
Thank you so much for this video, i learnd a lot
I'm very glad it helped! Thank you for supporting the channel! 🙏🏾
Please can you make a video on how to find cyber security jobs and what skills industry are expecting?
There are a lot of videos out there about that. I dont think I have much to contribute to that. I want to keep it technical and document my own journey at the moment.
But companies want what they've always wanted:
-honesty
-hard work
-loyalty
-rigor
-skill