Tag

THM

TryHackMe – Kenobi Walkthrough

Introduction

This was an easy Linux box that involved gaining initial access by exploiting a vulnerability in ProFTPD to copy a user’s SSH key to a world-readable directory, grabbing it using SMB and using it to authenticate to via SSH and exploiting a vulnerable SUID binary in conjunction with PATH Environmental Variable manipulation to escalate to root.

January 22, 2021 | by Stefano Lanaro | Leave a comment

CTF Walkthroughs, TryHackMe

TryHackMe – Vulnversity Walkthrough

Introduction

This room is part of the TryHackMe’s Offensive Pentesting learning path, which is something a lot of people use when preparing for their OSCP exam. This was one of the first rooms and it involved attacking a web application exploiting a file upload functionality, bypassing file extension whitelisting, and exploiting a SUID binary to escalate privileges.

January 17, 2021 | by Stefano Lanaro | 2 Comments

Navigation
- Home
- CTF Walkthroughs
- Guides
- Reviews
- Resources
  - Cheat Sheets
  - Checklists
- About
About StefLan Security

I am a penetration tester and cyber security / Linux enthusiast.
Through this blog, I would like to share my passion for penetration testing, hoping that this might be of help for other students and professionals out there. I will be more than glad to exchange ideas with other fellow pentesters and enthusiasts.
Recent Posts
- Certified Red Team Expert (CRTE) Review April 16, 2024
- TryHackMe – Nax Walkthrough April 8, 2024
- Certified Azure Red Team Professional (CARTP) Review December 23, 2023
- A Complete Guide to Hacking GraphQL September 17, 2023
- Offensive Security Experienced Penetration Tester (OSEP) Review January 24, 2023