CTF / Challenges / Boxes

✍️CTF / Challenges / Boxes
- 💬About me
TryHackMe
- TryHackMe
  - Easy
    Anonforce
    Bounty Hacker
    Brooklyn Nine Nine
    Coldbox
    Dav
    Gaming Server
    Ignite
    Lazy Admin
    Lian_Yu
    Library
    Plotted-TMS v3
    Root Me
    Simple CTF
    Startup
    Thompson
    Wgel CTF
    ToolsRus
    Road
  - Medium
    0day
    Anonymous
    Haskell
    Relevant
    Mr Robot CTF
    Road
HACK THE BOX
- Hack the Box
  - Easy
    Beep
    Mirai
    Keeper
    Sau
    Blue
    Cap
    Knife
    Bashed
    Nibbles
    Cozy Hosting
    Validation
    Legacy
    Antique
    Pilgrimage
    Wifinetic
    ScriptKiddie
    Explore
    Horizontall
    Blocky
    Bank
    Blunder
LetsDefend
- LetsDefend
  - PRACTICE WITH SOC ALERTS
    SOC146
    SOC140
    SOC114
    SOC120
    SOC141
    SOC165
    SOC168
    SOC167
    SOC169
    SOC170
    SOC104_ID14
  - CHALLANGES
    Malicious Doc
    Malicious VBA

Powered by GitBook

On this page

TryHackMe

TryHackMe

Easy

Simple CTF

Last updated 1 year ago

Enumeration machine by using Nmap and gobuster.

Continue enumeration to the found subpage /simple.

Going to /install.php and checking some information, found version of CMS.

CMS is Content Management System.

Found an exploit for CMS Made Simple 2.2.8.

Using an exploit to obtain a machine or information needed to obtain it.

We have a username and password.

Log in to ssh and get a first flag.

Privilege escalation.

Follow the instructions on the website and get a root flag.

- GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems.

Done

🎉

https://gtfobins.github.io/