CTF Notes, Security Insights, Practical Learning.
Description VulnNet Entertainment is a company that learns from its mistakes. They quickly realized that they can’t make a properly secured web application so they gave up on that idea. Instead, they decided to set up internal services for business purposes. As usual, you’re tasked to perform a penetration test of their network and report … Read more
Description Everything here is plotted! https://tryhackme.com/room/plottedtms Happy Hunting! Tip: Enumeration is key! Port scanning nmap -p- -sS -T4 -A 10.81.183.25 Main website Both sites – the one on port 80 and another one on 445 are presenting the default Apache Page. Directories enumeration feroxbuster -u http://10.81.183.25:80 -w /usr/share/wordlists/seclists/Discovery/Web-Content/big.txt feroxbuster -u http://10.81.183.25:445 -w /usr/share/wordlists/seclists/Discovery/Web-Content/big.txt The most … Read more
Description Difficulty: Easyhttps://tryhackme.com/room/vulnnetnode After the previous breach, VulnNet Entertainment states it won’t happen again. Can you prove they’re wrong? VulnNet Entertainment has moved its infrastructure and now they’re confident that no breach will happen again. You’re tasked to prove otherwise and penetrate their network. Web Language: JavaScriptThis is again an attempt to recreate some more … Read more
Description Boot-to-root originally designed for Securi-Tay 2020https://tryhackme.com/room/jackofalltradesJack is a man of a great many talents. The zoo has employed him to capture the penguins due to his years of penguin-wrangling experience, but all is not as it seems… We must stop him! Can you see through his facade of a forgetful old toymaker and bring … Read more