In this article, I will be talking about WHY documentation of security concepts are important and NOT a waste of paper. Note: These are simply notes I made on a video I found interesting! (https://www.youtube.com/watch?v=GU5ayb3kTqM) Why Do We Need Security Concepts? Goal 1: So that the implementer can develop it (they aren’t going to do […]
1) Check Crackstation https://crackstation.net/ It will be able to crack very simple hashes. 2) Identify Hash Type (and Salt) HashID (https://github.com/psypanda/hashID) Note: This requires Python. You can install it like so: $ pip install hashid Syntax $ python -m hashid [OPTIONS] [HASH] None of the options are necessary so I won’t write them out. Plus, […]
Introduction Today I will be going over Overpass 3, a moderately challenging CTF on TryHackMe. Let’s get right into it! Overpass 3 room: https://tryhackme.com/room/overpass3hosting Deploy the target machine and connect to the TryHackMe network with OpenVPN. Port Scans Let’s make a directory for this CTF and create a directory underneath that for our port scans. […]
Introduction Today I’ll be going through the Overpass CTF on TryHackMe. I’m taking a look at relatively easy challenges as it’s a good way of consolidating my understanding and it is also a great way for me to gauge my progress. Let’s get to it! Ports Let’s begin by identifying which ports are open on […]
Introduction Welcome to yet another write-up of a TryHackMe CTF room. Today we will be going over one of the easier boxes that TryHackMe offers. Very easy yet I found the last section very interesting. Let’s get into it! Ports As always, we will scan the target machine and see what ports are open. nmap […]
Introduction Welcome back to another TryHackMe CTF write-up. I decided to go for an easy one today but it was still a lot of fun! Link to room: https://tryhackme.com/room/jackofalltrades Ports Let’s start off by scanning which ports are open on the target machine. nmap -p- –min-rate 5000 -oN allports IP Ok so a standard SSH/HTTP […]
Introduction Welcome to another TryHackMe write-up. Today we will be going through a medium-difficulty room called “Wonderland” that is based around Linux privilege escalation techniques. Let’s get into it! Link to the Wonderland room: https://tryhackme.com/room/wonderland Port Scans Let’s begin by scanning the machine with nmap and see what we can find. 22/SSH – OpenSSH 7.6p1 […]
Introduction Welcome to another post in which I will be doing something a bit different. Today, I won’t be going through a room on TryHackMe (this is a half-lie) and instead I will be talking about a topic of my choosing (refer to the title) and delving into it so I can improve my knowledge […]
Introduction Welcome to another write-up! Today I’ll be taking a look at TryHackMe’s room on the very recent and shocking Log4j vulnerability. Log4j TryHackMe Room: https://tryhackme.com/room/solar The Log4j vulnerability may result in remote code execution (RCE) but that isn’t the scariest thing. It’s the combination of that and the fact that the Log4j framework can […]
Introduction Welcome to my write-up of the TryHackMe room “Road”. It is marked as a medium level difficulty room and there is a lot that I learnt here so let’s get started! The room can be found at: https://tryhackme.com/room/road Enumeration: Port Scanning Let’s begin by running port scans against the target machine using nmap. So […]