Name: Hack The Box Meetup #7: CrownJewel 1 (Sherlock)
Start: 2026-05-16T10:00:00+03:00
End: 2026-05-16T12:00:00+03:00

In this very easy sherlock, you will learn how to detect NTDS.dit dumping which is one of the most critical Active directory attacks. You will get your hands on event logs and MFT to respond to an attack where the attacker utilized vssadmin utility to dump the NTDS.dit database.

castronicholas

Hack The Box Meetup: Kampala, UG

Hack The Box

Technology

Open Source

New Technology

Cloud Computing

Software Development

Education & Technology

Cybersecurity

LordSudo is a security consultant who designs, builds, breaks, and supports enterprise-level security systems from the ground up. He advises organizations on strengthening their security posture, from architecture design and risk assessments to hands-on penetration testing and incident response. His work covers everything from deploying and hardening critical infrastructure to running adversary simulations and guiding teams through detection and remediation strategies. A CTF player for the P3rf3ctr00t team and a challenge author for multiple platforms and organizations, he moves seamlessly between red-team operations, blue-team defense, and purple-team collaboration, translating complex attack scenarios into practical, actionable improvements.

Hack The Box Meetup: Kampala, UG

Hack The Box Meetup #7: CrownJewel 1 (Sherlock)

Hack The Box Meetup: Kampala, UG

Details

Related topics

You may also like