Posts tagged with "CVE-2025-24071" | w1zardx

Fluffy (HackTheBox)

An easy Windows assumed breach scenario leveraging CVE-2025-24071, ACL abuse, and AD CS (ESC16) for privilege escalation.

w w1zardx
December 25, 2025
9 min read

HackTheBox Active Directory ADCS CVE-2025-24071 ESC16 Pass-The-Hash Shadow Credential Attack NTLM Cracking CPTS