all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

TRYHACKME: Ignite (writeup)

Add to bookmarks
April 3, 2023, 3:32 p.m. | Ali AK

System Weakness - Medium systemweakness.com

Level: Easy

The domain of Room: ctf boot2root privesc exploit

Tools used here: Nmap, searchsploit, RCE, NC reverse shell, GREP

Phase 1 2: Reconnaissance (Active) & Scanning

First, check if the host is up. I use ICMP Echo Request Scan to check the status of the remote target.

Now, time to check active TCP ports, Services running on that ports, OS, and other helpful information of target for later Phases.

nmap -Pn -sS $ip -T4 -n -v

HTTP server …

amp check cms ctf domain echo enumeration ethical hacking fuel host icmp ignite information installation linux nmap port ports privesc rce reconnaissance request reverse reverse shell scan server service services shell system target tcp tryhackme web security writeup

Visit resource

More from systemweakness.com / System Weakness - Medium

The Future of Programming: A Look at Emerging Languages Shaping Software Development 1 day, 2 hours ago | systemweakness.com
address article changing development +14
Cyber Detectives Unite: Advanced Tools for Web Security 1 day, 2 hours ago | systemweakness.com
bug bounty computer science cybersecurity ethical hacking +1
Mittre Att&ck‘s User Manual 1 day, 22 hours ago | systemweakness.com
adversary amp att attacks +22
Unveiling the Hidden: A Guide to Passive Subdomain Enumeration 1 day, 22 hours ago | systemweakness.com
bug bounty hacking security technology +1
Limit Requests to EC2 Instances to Cloudflare Only IPs 1 day, 22 hours ago | systemweakness.com
aws aws lambda cloudflare security +1
Canary Codes for Curious Minds 1 day, 22 hours ago | systemweakness.com
canary tokens hacking ip address location +1
Zero Trust Network Access 2 days, 20 hours ago | systemweakness.com
least privilege microsegmentation network security virtual private network +1
Ransomware-as-a-Service: Democratizing Digital Destruction and How to Fortify Your Defenses 2 days, 20 hours ago | systemweakness.com
as-a-service attacks businesses critical +24
Detecting Mobile Threats: Indicators of Compromise 2 days, 20 hours ago | systemweakness.com
business compromise continue cybersecurity +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Open-Source Intelligence (OSINT) Policy Analyst (TS/SCI)

@ WWC Global | Reston, Virginia, United States
View on infosec-jobs.com

Security Architect (DevSecOps)

@ EUROPEAN DYNAMICS | Brussels, Brussels, Belgium
View on infosec-jobs.com

Infrastructure Security Architect

@ Ørsted | Kuala Lumpur, MY
View on infosec-jobs.com

Contract Penetration Tester

@ Evolve Security | United States - Remote
View on infosec-jobs.com

Senior Penetration Tester

@ DigitalOcean | Canada
View on infosec-jobs.com
View more jobs