We have all seen at least once a blue screen of death (BSOD) on Windows. But what is happening exactly? Where is the crash information? How to analyze them?

Windows services often run with a specific account, but where and how are the passwords of the service stored? How to extract them?

We will see a few common queries to find useful information in LDAP during a Windows Active Directory pentest.

Windows account security questions are a good way to recover your password. Where and how are they stored? How to extract them?

Windows Print Spooler is a service with many vulnerabilities. In this we will see 3 methods to disable this service.

Enumerating Active Directory sites and subnets is an important part of the enumeration phase. We will see how to extract them from Windows and linux.

Writeup du challenge réaliste Escalate Me proposé par la plateforme RootMe à l'European Cyber Cup 2022 à Lille.

LimeSurvey v5.3.9 and below allows attackers to include javascript or HTML code in the config.xml file of a plugin.

In this article, we will see how to decrypt encrypted passwords in Group Policy Preferences (GPP), and stored in SYSVOL.