all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Road THM Walkthrough

Add to bookmarks
Nov. 2, 2023, 6:46 p.m. | y1s4s

System Weakness - Medium systemweakness.com

This is a writeup for Road, a medium difficulty machine from tryhackme https://tryhackme.com/room/road

As always I started enumerating the target system using nmap and got the following output

Now, since port 80 was open, the first thing I did was check the website at port 80:

Now, I found a couple interesting things, an email address and a login/signup page

Now I proceed to create an account with some dummy credentials to see more functionality of the website and try …

ctf ctf-walkthrough ctf-writeup pentesting

Visit resource

More from systemweakness.com / System Weakness - Medium

IDOR Attacks Demystified: How They Work and How to Prevent Them 1 day, 15 hours ago | systemweakness.com
attacks business compromise confidentiality +13
How does Single Sign-on (SSO) interact with Active Directory (AD) and Outlook? 1 day, 15 hours ago | systemweakness.com
access active directory applications authentication +15
OSI Model & TCP/IP Comparison 1 day, 15 hours ago | systemweakness.com
access communication deals frameworks +14
First AD home lab 2 days, 11 hours ago | systemweakness.com
access active directory building can +17
3 Steps to protect yourself from Prompt Injection 2 days, 11 hours ago | systemweakness.com
prompt-engineering prompt injection security
Clocky | TryHackMe Write-up 3 days, 10 hours ago | systemweakness.com
ctf ctf-writeup tryhackme tryhackme-walkthrough +1
Bypassing Aquatone’s lack of ability to take screenshots of private websites 3 days, 10 hours ago | systemweakness.com
automation cybersecurity hacking pentesting +1
Tuesday Morning Threat Report: Apr 30, 2024 3 days, 10 hours ago | systemweakness.com
analysis artificial intelligence bad customers +21
Staying Anonymous — Ethical Hacking as a Beginner [09] 3 days, 10 hours ago | systemweakness.com
anonymous beginner communication cybersecurity +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

DevSecOps Engineer

@ Material Bank | Remote
View on infosec-jobs.com

Instrumentation & Control Engineer - Cyber Security

@ ASSYSTEM | Bridgwater, United Kingdom
View on infosec-jobs.com

Security Consultant

@ Tenable | MD - Columbia - Headquarters
View on infosec-jobs.com

Management Consultant - Cybersecurity - Internship

@ Wavestone | Hong Kong, Hong Kong
View on infosec-jobs.com

TRANSCOM IGC - Cybersecurity Engineer

@ IT Partners, Inc | St. Louis, Missouri, United States
View on infosec-jobs.com

Manager, Security Operations Engineering (EMEA)

@ GitLab | Remote, EMEA
View on infosec-jobs.com
View more jobs