Lab Intro
The Wutai Group has tasked you with performing a penetration test on its networks. This includes the Wutai Parent Company & its subsidiary Junon. Wutai is concerned about its security posture since a leak of domain usernames was found online on pastebin.
https://pastebin.com/BBZkJGU1 KE37vTed5S
The goal of this test is to reach Enterprise Administrator in the wutai.vl domain. Wutai employs a small SOC but its blue team capabilities are still on a rather basic level.
Wutai’s external systems can be reached through the RTL VPN on the 172.16.20.0/24 network. Everything is in scope except the infrastructure (172.16.xx.1/172.16.xx.2). To access the network add the following line to your ovpn file:
[+] work.junon.vl\Wendy.Vincent:Summer2023 hazel.simpson terry.lowe Melanie.mueller Wendy.vincent
jade.wastson: Winter2022 Hollie.Parker
Sarah.Allen: Wutai2023 Tom.Perkings :Wutai2023
Roger.Ball:Junon2023