notrubberduck

"Complexity is the enemy of security."

Overview

# Fixing the issue (in theory)
sudo rm -rf /

Latest Reports

2 of 6 reports View All

[REPORT] DCSync Attack: Stealing Password Hashes from Active Directory

December 22, 2025

Active Directory (AD) is the backbone of authentication and authorization in most enterprise networks. One of the most powerful attacks against AD is the DCSync attack, which allows attackers to simulate the behavior of a Domain Controller (DC) and extract sensitive credential data, including password hashes and Kerberos keys.

Read Report

[REPORT] AS-REP Roasting: A Stealthy Active Directory Attack Explained

December 21, 2025

AS-REP roasting abuses a common Active Directory misconfiguration to extract crackable password hashes without authentication or account lockouts, making it a stealthy and dangerous attack vector.

Read Report

Targets & Tools

2 of 3 items View All

[TOOL] Dns-Exfiltration

December 15, 2025 Completed

A Python-based DNS server that can receive and reconstruct data transmitted through DNS queries. This tool is useful for data exfiltration scenarios where traditional network communication methods are restricted.

View Tool

[TOOL] Inficted

December 15, 2025 Active

An open-source engine for monitoring data breaches and leaks from various sources.

View Tool

Quick Links

1 link
About