This room is a box hosting two web services, and one of them is hosting a vulnerable service. We are able to use an exploit to achieve remote code execution. After an initial shell, winPEAS shows we are able to use an unquoted service path vulnerability to escalate to nt…

This TryHackMe room is a medium CTF. This room is a Wordpress site that we were able to brute force the login using Hydra. We used the Wordpress theme editor to upload a reverse shell. From there, we found a MD5 password hash, which we used John the Ripper to…

This is a walkthrough of TryHackMe’s Inclusion room. This is a web-focused room that has a local file inclusion vulnerability. You can find this room at https://tryhackme.com/room/inclusion To start, Local File Inclusion is a web application vulnerability that allows for an attacker to view files on the server by specifying…

This lab focused on exploiting misconfigured FTP to gain SSH access to a machine. From there, we could privilege escalate to gain root access. The lab can be found on the TryHackMe website: https://tryhackme.com/room/cowboyhacker Once the machine deployed, I ran nmap to discover any open ports on the machine, along…

This lab focused on web application testing and privilege escalation. We will scan the machine with nmap, use DirBuster to find hidden directories, Enum4Linux to search for SMB usernames, Hydra to crack the password of the found username, and John the Ripper to crack a passphrase. This lab can be…