PingPong is an insane-rated machine featuring multiple Active Directory domains connected through a trust relationship. The attack follows an assumed-breach methodology and reflects realistic red team operations involving AD CS abuse, segmented network pivoting, cross-domain ACL misconfigurations, gMSA credential compromise, delegated access abuse, and certificate template escalation. The path moves laterally between domains, chains trust-based privilege escalation, and ends with full domain administrator compromise.
You need to be signed in to access protected stories.
For hints/guidance/requests, you can join our Discord Server
*Following HTB policies, the solutions to live machines will not be shared publicly even on the Discord server.