-
How I passed OSCP on my first attempt
My main goal while at university was to achieve my OSCP before graduating in 2023, obviously this would be hard and it would take a lot of time and dedication to achieve but in September I had finally passed my OSCP on my first attempt. Preparation Before I started OSCP I had to do a…
-
Studying for OSCP
I have just finished with my 2nd year of university and thought that the summer would be a good time to start my OSCP journey. As a lot of you may know OSCP is one of the essential certifications for a career in pentesting and because of this it has been my goal to achieve,…
-
HTB-Netmon
Difficulty-Easy Link-https://app.hackthebox.com/machines/netmon Enumeration First I conducted an nmap scan of the machine. The nmap scan shows us that ftp,smb and a webserver is running. I quickly checked the website as well to see if there is any information there. Getting user.txt Now as the ftp allows anonymous login I decided to check that for the…
-
THM-Bounty Hacker
Description-You talked a big game about being the most elite hacker in the solar system. Prove it and claim your right to the status of Elite Bounty Hacker! Difficulty-Easy Link-https://tryhackme.com/room/cowboyhacker Enumeration I started with an nmap scan using the flags -A and -T4 After this scan I connected to the ftp port and logged in…
-
HTB-Previse
Difficulty-Easy Link-https://app.hackthebox.com/machines/Previse Enumeration If we scan the target we discover that the machine is running ssh and a webserver. If we go onto the website we find a login page I tried to use gobuster but the scan didnt find anything else apart from index.php. So its time to explore the site. Getting user After…
-
THM-Easy Peasy
Description-Practice using tools such as Nmap and GoBuster to locate a hidden directory to get initial access to a vulnerable machine. Then escalate your privileges through a vulnerable cronjob. Difficulty-Easy Link-https://tryhackme.com/room/easypeasyctf Enumeration First I started with an nmap scan using the -A and -T4 flags. There is 2 other ports that I scanned later with…
-
HTB-LAME
Link-https://app.hackthebox.com/machines/Lame Enumeration I started with nmap scan using -A and -T4 From previous experience I know that vsftpd v.2.3.4 is vulnerable so doing some research I found a metasploit module that we can use to exploit it. However after testing the module a bit we will find that it has been patched so now its…
-
THM-Simple CTF
Description-Beginner level ctf Difficulty-Easy Link-https://tryhackme.com/room/easyctf Enumeration I started with a nmap scan using the tags ‘-A’ and ‘-T4’ which would give me a quick thorough scan of the machine I then went through the ftp server logging in as anonymous and retried the ForMitch.txt file. This file talks about someone called Mitch who is using…
-
THM-RootMe
Description-A ctf for beginners, can you root me? Difficulty-Easy Link-https://tryhackme.com/room/rrootme Enumeration I started with an nmap scan of the target to discover what ports were running and what services. I used the -sC and -sV flags which would find service and version info about the open ports and nmap will run a default script too.…
-
Getting started with ctf’s
First is the setup, Its important to have the tools for the job so choosing an operating system that has in built tools that can be used are very important. I am a fan of kali linux as this provides a good array of tools out of the box and its a great os to…
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
MHCyber 