My TryHackMe Writeups

Writing THM excersise solvings here and my thoughts on how to solve them

Project maintained by NaystyX Hosted on GitHub Pages — Theme by mattgraham

Bounty Hacker

https://tryhackme.com/room/cowboyhacker

Tasks

As with all machines I start with nmap to find open ports which is the first task.

image

We find three ports open and anonymous login allowed to ftp. I also ran gobuster but that didn’t help me much

image

Using FTP I find two files, locks.txt, task.txt

image

Since the question was who wrote task list I view it and find lin, now that I have a username I could try ssh bruteforce with the locks.txt which seemed to have passwords.

image

So now I got a password time to try it and success.

image

From here I find the user.txt flag, now I jsut need root access. From what I previously have learned I decided to do sudo -l to find what access I have.

image

After finding this I looked up tar in GTFOBins and found sudo tar -cf /dev/null /dev/null --checkpoint=1 --checkpoint-action=exec=/bin/sh and running it gave me root access.

Then I just headed to /root/ to find the last flag.

Conclusion

This challenge was fairly easy but it shows me that I am slowly starting to remember the steps what to do and how to give myself root access etc. So very important still