KL3FT3ZInternal redteam, 8h, no tools except one exploit.
Result: VP account, full AD control. SOC: 0 alerts.
https://github.com/toxy4ny/semetsky---VP
Why it matters: PXE-boot Linux, unmonitored, unpatched since 2023.
CVE-2025-32463 → bash_history with plaintext creds → RDP hop →
custom AD delegation. All "legitimate" actions, no SOC triggers.
What's your "Yuri Semetsky" story? (obfuscated, of course)
GitHub - toxy4ny/semetsky---VP: How Yuri Semetsky Became a Vice President of Kingdom-Bank. Or why the most dangerous weapon isn't an exploit, but the conviction that "we have everything under control"
How Yuri Semetsky Became a Vice President of Kingdom-Bank. Or why the most dangerous weapon isn't an exploit, but the conviction that "we have everything under control" - toxy4ny/seme...