TryHackMe
Year of the Rabbit
Time to enter the warren…
Task 1:
- What is the user flag?
Let’s Enumerate the Machine!!!
The Source Code of the machine Reveals a Page /sup3r_s3cret_fl4g
But the Page is Redirecting to Youtube. So Let’s Inspect and view for any suspicious Links
We Found a Directory Here /WExYY2Cv-qU
Let’s Download and use Strings Command to Search for any Strings
There is a Username — ftpuser and list of Passwords contains the Actual ftp Password
Copy the Passwords into a Text File named pass.txt
Use Hydra to Brute force the Password!!
We got the Password!
Now we are In!!
The Text File we downloaded from the Ftp Contains symbols known as BrainFuck
Use the Website to decode it!!
So Let’s try to Login into SSH with the above Credentials
Let’s Find the ‘S3cr3t’
find / -name “*s3cr3t*” 2>/dev/null
Now we got the Password for Gwendoline, Let’s Login
Ans: THM{1107174691af9ff3681d2b5bdb5740b1589bae53}
2. What is the root flag?
Use the Below Command and add :!/sh in the File
sudo -u#-1 /usr/bin/vi /home/gwendoline/user.txt
Ans: THM{8d6f163a87a1c80de27a4fd61aef0f3a0ecf9161}
Thankyou For Reading!!!
Happy Hacking!!
Author - Karthikeyan N | Cyberw1ng