Introduction
This is my write-up for TryHackMe's Bounty Hacker Room.
Enumeration
Using nmap, I saw that this box is running FTP, SSH and HTTP.
TryHackMe write-up: Smag Grotto
Introduction
This is my write-up for TryHackMe's Smag Grotto Room.
Enumeration
Using nmap, I saw that this box is running SSH and HTTP.
I then checked the webpage using my browser.
TryHackMe write-up: Brooklyn Nine Nine (Second Method)
Introduction
This is my 2nd write-up for TryHackMe's Brooklyn Nine Nine Room. According to the room description, there are 2 ways to root the box. The first method was described in my earlier post. The 2nd method will be described here.
Enumeration
Using nmap, I saw that this box is running FTP, SSH and HTTP.
It turns out, FTP allows anonymous access.
Downloading the note, I found that one user uses a weak password.
TryHackMe write-up: Brooklyn Nine Nine (First Method)
Introduction
This is my write-up for TryHackMe's Brooklyn Nine Nine Room. According to the room description, there are 2 ways to root the box. However, I will only describe the first method I found. The 2nd method will be described in this post.
Enumeration
Using nmap, I saw that this box is running FTP, SSH and HTTP.
Checking the webpage from my browser, I saw the following:
TryHackMe write-up: Overpass
Introduction
This is my write-up for TryHackMe's Overpass Room.
Enumeration
Using nmap, I saw that this box is running SSH and HTTP.
Looking at the webpage, I find this:
The About Us page may contain useful usernames:
Running nikto, it turns out that there's an admin panel there:
Below is what the admin panel looks like:
TryHackMe write-up: Blog
Introduction
This is my write-up for TryHackMe's Blog Room.
Enumeration
Using nmap, I saw that this box is running SSH and HTTP and SMB.
Using nmap, I saw that this box is running SSH and HTTP and SMB.
Checking for shared SMB folders, I found an interesting one:
I then checked the interesting folder:
I first checked tswift.mp4 but found it to be a spoofed music video. Watch it if you don't believe me.
check-this.png looked promising. But it turned out to be just a regular barcode, or is it? Uploading the image file to an online barcode reader, I see that it contained a URL:
Turns out the URL is just a YouTube video:
Lastly, I then checked Alice-White-Rabbit.jpg.
So it turns out checking the SMB share is indeed a rabbit hole.
TryHackMe write-up: Source
Introduction
This is my write-up for TryHackMe's Source Room. This is rated as Easy. Let's see why.
Using nmap, I saw that this box is running SSH and Webmin.
This is my write-up for TryHackMe's Source Room. This is rated as Easy. Let's see why.
Enumeration
Using nmap, I saw that this box is running SSH and Webmin.
Checking port 10000 on the browser, I found the Webmin login page:
Subscribe to:
Posts (Atom)