Category: tryhackme

• TryHackMe: Overpass

  Overpass is an “Easy” rated machine on THM with the goal of getting a user and a root flag. Seems pretty straightforward, only guidance is that the theme is a student-created password manager. Unfortunately we’re taking a look at this a couple years after it was created – there was a THM subscription hidden on…

  joetats

  January 23, 2023

  ctf, tryhackme

  ctf, metasploit, pentesting, priv esc, security, ssh, web

• TryHackMe: Pickle Rick

  Who doesn’t love Rick and Morty? On this box our goal is to exploit a webserver and find 3 ingredients for Rick to turn back into a human. Once we start it up we should start our recon by looking through the web server. Recon Using BurpSuite and the BurpSuite browser, we can start poking…

  joetats

  January 22, 2023

  ctf, tryhackme

  ctf, linux, pentesting, web

• TryHackMe: Mr Robot CTF

  This room keeps popping up in my THM ‘todo’ list and I really liked the show (well, the first three seasons. I’m behind.) so it’s probably a good time to give it a go. The first section of tasks are all about connecting your machine to the THM VPN, so once that is knocked out…

  joetats

  January 18, 2023

  ctf, tryhackme

  ctf, pentesting, priv esc, security, wordpress

• TryHackMe: Basic Pentesting

  This should be a pretty straightforward box, the details provided note that this will involve brute forcing, hash cracking, service enumeration, and Linux Enumeration. Let’s get started with some recon! Recon Like usual, let’s hit the target with an nmap scan. My initial scan is as follows: This takes a little while, so after making…

  joetats

  January 16, 2023

  ctf, tryhackme

  ctf, pentesting, security, web