Kenobi – TryHackMe – Manual Writeup

Kenobi – TryHackMe – Manual Writeup

Intro The Kenobi box will cover the following topics: Enumeration of samba shares Manipulation of a vulnerable version of proftpd Path variable manipulation for privilege escalation Enumeration Nmap Initial Nmap scan:    ┌──(kali㉿kali)-[~]     └─$ nmap -A -v $IPPORT...
Skynet – Tryhackme – Manual Writeup

Skynet – Tryhackme – Manual Writeup

Intro Skynet machine covers the following topics: Vulnerable smb server Squirrelmail brute-forcing with Burpsuite Local/Remote File Inclusion Exploiting Wildcards on Linux Enumeration Nmap Starting with a Nmap scan:   ┌──(kali㉿kali)-[~]     └─$ nmap -v -A $IPPORT...
Alfred – TryHackMe – Manual Writeup

Alfred – TryHackMe – Manual Writeup

Intro We’ll exploit a common misconfiguration on a widely used automation server (Jenkins) and gain access through windows tokens.   Enumeration   Nmap scan   ┌──(kali㉿kali)-[~]     └─$ export IP=10.10.117.45  ┌──(kali㉿kali)-[~]     └─$ nmap -p- -A -Pn...
HackPark – TryHackMe – Manual Writeup

HackPark – TryHackMe – Manual Writeup

Intro This machine will cover brute-forcing account credentials & handling public exploits. Here’s a link to the box.   Enumeration Nmap scan As usual, we’ll start with a Nmap scan.   ┌──(kali㉿kali)-[~]     └─$ export IP=10.10.219.247 ...
Game Zone -TryHackMe – Manual SQLi Writeup

Game Zone -TryHackMe – Manual SQLi Writeup

Intro This write-up will cover manually exploiting an SQLi vulnerability without the use of SQLMap, cracking users hashed password, using SSH tunnels to reveal a hidden service and gaining root privileges without Metasploit. Here’s a link to the Tryhackme box....
error: Alert: Content is protected !!