The skills to be tested and needed to solve this room are: rustscan, CVE, capabilities, privilege escalation, reverse-shell, and nc (netcat). This room was released today 8/28/2020, and I wanted to try if I can crack it. It took me less than 30 minutes to retrieve the root flag. This is also the first time …
Tag Archives: infosec
Try Hack Me: Tartarus
The skills to be tested and needed to solve this room are: nmap, gobuster, hydra, burp suite, privilege escalation, cron jobs, and nc (netcat). This room has three privilege escalations, two horizontal lateral movement and the last one obviously is vertical. This room was released on 8/13/2020, and I wanted to try if I can …
Real World “Credential-Stealing” Phishing Email SEG-Missed
We have heard it many times that Email Phishing and Social Engineering are the hardest threat vectors to remediate. Or should I say, there is no perfect solution against them since they target end users and their security awareness. Not even the cybersecurity training firm giant, SANS, is exempted to falling victim to a phishing …
Continue reading “Real World “Credential-Stealing” Phishing Email SEG-Missed”
Try Hack Me: Overpass 2 – Hacked
The skills to be tested and needed to solve this room are: Forensics, Wireshark, Hashcat, John, Hydra, and SUID. Analyzing the PCAP using Wireshark was a great review for me. Cracking the hash with the salt made me do extra researching on how to identify hashes and which hash-type to use to crack the them. …
Try Hack Me: Bolt
The skills to be tested and needed to solve this room are: RCE, Metasploit, and just a keen eye. This room was released today 8/12/2020, and I wanted to try if I can crack it. This is a super easy room. Perfect for anyone who wants to try ctf or hacking. I also chose to …
Try Hack Me: Brooklyn Nine-Nine
The skills to be tested and needed to solve this room are: Nmap, GoBuster, Steganography, Hydra, and Security. This room was fun because my wife and I are fans of this TV show. Shout-out to @Fsociety2006 for creating this room. Visit https://tryhackme.com and create an account for free to take advantage of this great learning …
Try Hack Me: Basic Pentesting Room
The skills to be tested and needed to solve this room are: webapp, boot2root, and cracking. This room has been out for over a year, but it is still a great one practice. I was assigned an IP of 10.10.170.205 Shout-out to @ashu for creating this room. Visit https://tryhackme.com and create an account for free …
PASSED! EC-Council’s Certified Ethical Hacker (Practical)
What is EC-Council’s CEH Practical? It is a 6 hours practical exam built to exacting specifications by subject matter experts in the Ethical Hacking field. Professionals that possess the CEH credential are able to sit for the exam that will test their limits in unearthing vulnerabilities across major operating systems, databases, and networks. To those …
Continue reading “PASSED! EC-Council’s Certified Ethical Hacker (Practical)”
Try Hack Me: Overpass Room
The skills to be tested and needed to solve this room are: OWASP Top 10, and cron. This room is just 10 days old, and I wanted to try if I can crack it. The user flag was easy to find, but I struggled to do privilege escalation. Shoutout to NinjaJc01 for creating the room. …
N00b_H@ck3r 