• TryHackMe Tomghost-Writeup TryHackMe Tomghost-Writeup Tomghost is a beginner level machine from tryhackme. The machine is focused on teaching about the famous Apache Jserv exploit Ghostcat. We use Ghostcat LFI exploit to gather ssh credentials and gain access to the machine. The machines also has some pgp encryption files for us to crack and the final root access […] 2 min read October 21, 2021
  • TryHackMe Simple CTF-Writeup TryHackMe Simple CTF-Writeup Simple CTF is a beginner level machine on TryHackMe. The machine has a webserver, a FTP server and a ssh service running. The webserver has an installation of CMS Made Simple 2.2.8 which is vulnerable to SQLi . This SQLi is used to gain credentials of the ssh user and the sudo privileges […] 2 min read October 18, 2021
  • TryHackMe Sudo Buffer Overflow-Writeup TryHackMe Sudo Buffer Overflow-Writeup Sudo Buffer Overflow is a beginner level Linux machine on TryHackMe. The machine teaches us about vulnerabilities in sudo command. The machine is running sudo < 1.8.26 which is vulnerable to Buffer Overflow exploit if password feedback is turned on. In this machine, the password feedback is turned on so we […] 2 min read October 16, 2021
  • TryHackMe WgelCTF-Writeup TryHackMe WgelCTF-Writeup WgelCTF is a beginner level Linux machine on TryHackMe.This machine targeted to people who want to get a taste of CTFs and understand the basic enumeration is done in a CTF. The machine has an SSH private on the webserver which is used to gain access to the machine and there is a […] 3 min read October 9, 2021