⚠️ Pracivo Security Lab — LDAP injection in login, pass the hash, Kerberoasting simulation, exposed NTLM hashes.
Active Directory Attack Lab
- /ldap-login — LDAP Injection: bypass authentication with special characters
- /pass-the-hash — Use an NTLM hash instead of a password to authenticate
- /kerberoast — Request service tickets for accounts with SPNs (Kerberoasting)
- /users — Enumerate all domain users and their hashes