Lo-Fi Writeup on TryHackMe – File Inclusion
This writeup covers the solution of Lo-Fi room on TryHackMe. A PHP File Inclusion along with path traversal allow us to read the flag.
pentestguides
TryHackMe TakeOver Writeup – Subdomain Challenge
Full writeup of TakeOver from TryHackMe. Subdomain enumeration and TLS certificate inspection leads to the discovery of a secret subdomain
TryHackMe “Agent T” Writeup – Easy Challenge
Writeup of TryHackMe challenge “Agent T”. We exploit the backdoored version of PHP 8.1.0-dev to get Code Execution and read the flag.
TryHackMe Compiled Challenge – Writeup
This writeup shows how to solve the TryHackMe challenge “Compiled”, by extracting the flag from the strings of a compiled program
Lazy Admin Writeup – TryHacKme Challenge
In this post, we solve the Lazy Admin CTF from TryHackMe by exploiting 2 CVE of SweetRice CMS and a sudo misconfiguration to get root.
wafw00f – Detect WAF (Web Application Firewalls)
In this tutorial, we’ll see how to use wafw00f, a Kali Linux pentesting tool, to detect WAF (Web Application Firewalls) used by websites.
whatweb Tutorial: Identify Website Technologies
whatweb is a Linux pentesting tool that detects the technologies and frameworks of websites: HTTP servers, CMS like Wordpress, Javascript, etc.
Pickle Rick Writeup – Easy TryHacKme CTF
Pickle Rick is a very easy TryHackMe CTF. We complete it by accessing a web portal, getting a reverse shell and exploiting sudo to become root.
Neighbour Writeup – Easy IDOR TryHacKme Challenge
Detailed writeup of TryHackMe Neighbour room, where we exploit IDOR to display the admin profile and find the flag of the room.
Solving The Suspicious Domain – Hack The Box challenge
The Suspicious Domain is a very easy challenge from Hack The Box where we retrieve information about the domain name alexmorgan-reviews.net