Active Directory enumeration techniques for penetration testers - DNS, SMB, LDAP, RPC, and initial domain reconnaissance

Complete guide to Kerberos-based attacks - Kerberoasting, AS-REP Roasting, Golden/Silver Tickets, Pass-the-Ticket, and Delegation abuse

Active Directory Certificate Services exploitation - ESC1 through ESC16, Certifried, enumeration and attack chains

Active Directory ACL exploitation, DPAPI secrets, credential dumping, Shadow Credentials, and remote access techniques

Complete NTLM relay guide - poisoning, coercion, SMB/LDAP/ADCS relay, and cross-protocol exploitation

Active Directory trust attacks - intra-forest and cross-forest exploitation, ExtraSids, SID History, PAM Trust abuse

Exploiting enterprise services in Active Directory - MSSQL lateral movement, Exchange phishing, and SCCM takeover

BloodyAD command reference and advanced Active Directory tooling for penetration testers

4 seasonal box from hackthebox

Advanced blind SQL injection challenge using conditional error-based techniques to extract sensitive data

Mini RSA is a crypto CTF Challenge from PicoCTF involving small public exponent attacks on RSA encryption

Introduction to Return Oriented Programming (ROP) through a beginner-friendly buffer overflow challenge