CTF Notes, Security Insights, Practical Learning.
Description Don’t over-baked your pie! https://tryhackme.com/room/unbakedpie Port scanning Nmap port scanning reveals that we have only one port open: 5003 Main website On the main website, we can see some cooking recipes. Photo of pickles is a tip 🙂 Cookie When we are using the search form, we can see that the phrase we are … Read more
Description https://tryhackme.com/room/dreaming Solve the riddle that dreams have woven.While the king of dreams was imprisoned, his home fell into ruins.Can you help Sandman restore his kingdom? Port scanning -Pn forces a full TCP scan even when the host blocks ICMP ping – many hardened labs drop ping packets. nmap -A -p- -T5 -Pn 10.81.188.191 Web … Read more
Description https://tryhackme.com/room/farewell Use red-teaming techniques to bypass the WAF and obtain admin access to the web application. The farewell server will be decommissioned in less than 24 hours. Everyone is asked to leave one last message, but the admin panel holds all submissions. Can you sneak into the admin area and read every farewell message … Read more
Description Level: mediumDemonstrate your web application testing skills and the basics of Linux to escalate your privileges. Initial setup When you are trying to access website using IP you can see that there is a visible domain: cloudsite.thm.I added this domain it to /etc/hosts. Website cloudsite.thm Main website looks like a simple company page. Checking … Read more