Writeup

     Let’s dive in!!  And root the machine. Nmap Scan - tryhackme ------------------------------------------------------------------------------------------------------------------ nmap -sC -sV  -oN nmap/ignite <TARGET_IP> -sC : Default scripts -sV : Version detection -oN : Output to be stored in the directory ‘nmap’ you created earlier There is only one open port 80/tcp http Apache httpd 2.4.18 ((Ubuntu)) Gobuster -------------------------------------------------------------------------------------------------------------------------- gobuster dir -u http://<TARGET_IP> -w <PATH_TO_WORDLIST> -o <OUTPUT_FILE_NAME> -x <EXTENSIONS> -u : URL -w : Wordlist -o : Output to be stored in the directory -x : Search for extensions e.g. html,txt,php,phtml etc. Navigate to http://<target_ip> scroll down we will find default credentials to login into the CMS  Navigate to http://<TARGET_IP>/robots.txt I checked them one by one they...

    Check out the room https://tryhackme.com/room/thecodcaper Hello everyone  this is another walkthrough blog of tryhackme, this room contains some trick to crack the linux machines root password. Room name : The Cod Caper Machine Type : Linux Task 2  We'll run nmap on the target # nmap -sV -A -p1-1000 -T4 -oN initial <target-machine-ip> Task 3 As recommended in tryhackme the cod caper room we'll use  gobuster  for the directory checking the wordlist for  gobuster  is in the task for downloading. Don't forget to user  -x  flag for specific extension search like ". html, .txt, .php " # gobuster dir -u <target_url> -w "path/of/wordlist" -x ".php" -x flag is important because we have to check the specific extension like ".html, .php" After gobuster directory bruteforcing we have admin page for login but we don't have username and password for login so we have to find the username and password to access the page. Task 4 W...