HackTheBox: StreamIO
A Windows box mixing web and AD: a SQL injection on search.php dumps and cracks user hashes, an LFI/RFI chain gives an IIS shell, a backup database cracks nikk37 for WinRM, decrypted Firefox passwords yield JDgodd, and WriteOwner over CORE STAFF reads a LAPS password for Administrator.
Read 