all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Red VS Blue— TryHackMe “Red” Writeup

Add to bookmarks
July 27, 2023, 4:45 p.m. | alda69

System Weakness - Medium systemweakness.com

This is my Writeup to the new RED Ctf on TryHackMe. You will learn somthing about LFI, exploiting known vulnerabilities, checking processes and a lot more.

1. Scanning for ports

First, of course, I looked for open ports on the machine. I used nmap, a popular port scanning tool.

nmap 10.10.118.26

Note: In your case, the Ip will be different. You can find the IP of your victim here:

And wohoo, there are two open ports. Ssh on port …

blue blue team case course ctf exploit exploiting hacking known vulnerabilities learn lfi machine nmap open ports popular port ports port scanning processes scanning tool tryhackme tryhackme-writeup vulnerabilities writeup

Visit resource

More from systemweakness.com / System Weakness - Medium

IDOR Attacks Demystified: How They Work and How to Prevent Them 12 hours ago | systemweakness.com
attacks business compromise confidentiality +13
How does Single Sign-on (SSO) interact with Active Directory (AD) and Outlook? 12 hours ago | systemweakness.com
access active directory applications authentication +15
OSI Model & TCP/IP Comparison 12 hours ago | systemweakness.com
access communication deals frameworks +14
First AD home lab 1 day, 8 hours ago | systemweakness.com
access active directory building can +17
3 Steps to protect yourself from Prompt Injection 1 day, 8 hours ago | systemweakness.com
prompt-engineering prompt injection security
Clocky | TryHackMe Write-up 2 days, 7 hours ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Bypassing Aquatone’s lack of ability to take screenshots of private websites 2 days, 7 hours ago | systemweakness.com
automation cybersecurity hacking pentesting +1
Tuesday Morning Threat Report: Apr 30, 2024 2 days, 7 hours ago | systemweakness.com
analysis artificial intelligence bad customers +21
Staying Anonymous — Ethical Hacking as a Beginner [09] 2 days, 7 hours ago | systemweakness.com
anonymous beginner communication cybersecurity +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Security Specialist, Forsah Technical and Vocational Education and Training (Forsah TVET) (NEW)

@ IREX | Ramallah, West Bank, Palestinian National Authority
View on infosec-jobs.com

Consultant(e) Junior Cybersécurité

@ Sia Partners | Paris, France
View on infosec-jobs.com

Senior Network Security Engineer

@ NielsenIQ | Mexico City, Mexico
View on infosec-jobs.com

Senior Consultant, Payment Intelligence

@ Visa | Washington, DC, United States
View on infosec-jobs.com

Corporate Counsel, Compliance

@ Okta | San Francisco, CA; Bellevue, WA; Chicago, IL; New York City; Washington, DC; Austin, TX
View on infosec-jobs.com

Security Operations Engineer

@ Samsara | Remote - US
View on infosec-jobs.com
View more jobs