walkthrough Premium

HackTheBox Pro Lab: Tea — Gitea RCE, Ansible Vault Decryption & AD CS Shadow Credentials

Full walkthrough of HackTheBox Tea Pro Lab — exploiting a Gitea CVE for unauthenticated RCE, decrypting Ansible Vault secrets for domain credentials, abusing Shadow Credentials (msDS-KeyCredentialLink) for certificate-based authentication, and DCSync for complete domain compromise.

lazyhackers

Mar 28, 2026 · 1 min read · 0 views

Members Only Content

This article is exclusively available to premium members of LazyHackers. Login or subscribe to read.

Published	Mar 28, 2026
Updated	Mar 28, 2026
Reading time	1 min
Views	0
Access	premium

Members Only Content

Related Articles