https://hussienmisbah.github.io/tags/pfx/ Recent content in Pfx on 0xMesbaha Hugo en Sat, 20 Aug 2022 00:49:18 +0200 https://hussienmisbah.github.io/posts/windows-machines/2022-08-20-timelapse/ Sat, 20 Aug 2022 00:49:18 +0200 https://hussienmisbah.github.io/posts/windows-machines/2022-08-20-timelapse/ <p>In this Box we are against a windows machine has the active directory service installed on it , we can list files on smb shares and access some shared folder to find a backup.zip file which contains a pfx file for a user on the domain , we can also find some hints about LAPS. after extracting the key and certificate from the pfx file we can login using WinRM. then checking the powershell history we can see password for another user which is a memeber of the LAPS_READERS Group so the other user can read the administrator password in clear text</p>