<?xml version="1.0" encoding="utf-8" standalone="yes"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
  <channel>
    <title>Mil4ne</title>
    <link>https://mil4ne.xyz/</link>
    <description>Recent content on Mil4ne</description>
    <generator>Hugo</generator>
    <language>en</language>
    <lastBuildDate>Tue, 01 Apr 2025 00:00:00 +0000</lastBuildDate>
    <atom:link href="https://mil4ne.xyz/index.xml" rel="self" type="application/rss+xml" />
    <item>
      <title>Exploiting AD CS - ESC16 Step by Step.</title>
      <link>https://mil4ne.xyz/posts/esc16/</link>
      <pubDate>Tue, 01 Apr 2025 00:00:00 +0000</pubDate>
      <guid>https://mil4ne.xyz/posts/esc16/</guid>
      <description>&lt;p&gt;A few days ago, I was working through a HackTheBox machine called &lt;a href=&#34;https://www.hackthebox.com/machines/fluffy&#34;&gt;Fluffy&lt;/a&gt; and came across a very curious configuration in the &lt;a href=&#34;https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/get-started/virtual-dc/active-directory-domain-services-overview&#34;&gt;Active Directory&lt;/a&gt; environment. Everything pointed to the new ESC16 — and yes, we leveraged it to grab that coveted &lt;strong&gt;&amp;ldquo;Domain Admin&amp;rdquo;&lt;/strong&gt; (I was a bit uncomfortable since I&amp;rsquo;m still a noob when it comes to Active Directory).&lt;/p&gt;&#xA;&lt;p&gt;So I decided to write this post to dive deeper into the topic and understand why all of this happens and why AD CS behaves in a way that practically hands us Domain Admin.&lt;/p&gt;</description>
    </item>
    <item>
      <title>About</title>
      <link>https://mil4ne.xyz/about/</link>
      <pubDate>Mon, 01 Jan 0001 00:00:00 +0000</pubDate>
      <guid>https://mil4ne.xyz/about/</guid>
      <description>&lt;img src=&#34;https://avatars.githubusercontent.com/u/89859279&#34; alt=&#34;Mil4ne&#34; class=&#34;avatar avatar-8 rounded-full mb-3&#34; style=&#34;width: 160px; height: 160px;&#34;&gt;&#xA;&lt;p&gt;&lt;a href=&#34;https://mil4ne.xyz/es/about/&#34;&gt;Español&lt;/a&gt;&lt;/p&gt;&#xA;&lt;p&gt;In this blog you&amp;rsquo;ll basically find articles about things I learn along the way.&lt;/p&gt;&#xA;&lt;p&gt;I do this to reinforce my own memory and in case it can be useful to someone else.&lt;/p&gt;&#xA;&lt;div style=&#34;max-width: 480px; margin: 1.5rem auto;&#34;&gt;&#xA;  &lt;div style=&#34;position: relative; padding-bottom: 100%; height: 0; overflow: hidden; border-radius: 12px;&#34;&gt;&#xA;    &lt;iframe src=&#34;https://www.youtube-nocookie.com/embed/x3qTZ967R7E?modestbranding=1&amp;rel=0&amp;playsinline=1&amp;color=white&#34; style=&#34;position: absolute; top: 0; left: 0; width: 100%; height: 100%; border: 0;&#34; allow=&#34;accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share&#34; allowfullscreen title=&#34;Video&#34;&gt;&lt;/iframe&gt;&#xA;  &lt;/div&gt;&#xA;&lt;/div&gt;&#xA;&lt;h2 id=&#34;links&#34;&gt;Links&lt;/h2&gt;&#xA;&lt;ul&gt;&#xA;&lt;li&gt;&lt;a href=&#34;https://hackerone.com/mil4ne&#34;&gt;HackerOne&lt;/a&gt;&lt;/li&gt;&#xA;&lt;/ul&gt;&#xA;&lt;blockquote&gt;&#xA;&lt;p&gt;Jin Mu-Won&lt;/p&gt;</description>
    </item>
  </channel>
</rss>
