Practice the skills you have learned in the Network Security module.
https://tryhackme.com/room/netsecchallenge
Task 1 - Introduction
Use this challenge to test your mastery of the skills you have acquired in the Network Security module. All the questions in this challenge can be solved using only nmap, telnet, and hydra.
Task 2 - Challenge Questions
Answer the questions below
What is the highest port number being open less than 10,000?
nmap -sC -sV -T 4 10.10.82.60 -p- -oN initialscan with nmap and save scan to “initial” for refrence.- There are 6 open ports but one is hidden, the last question is a clue?
- Redoing nmap scan but with
-sNand sudo - We can see port 8080
There is an open port outside the common 1000 ports; it is above 10,000. What is it?
- inital scan shows port 10021
How many TCP ports are open?
- We see 5 open TCP ports and
What is the flag hidden in the HTTP server header?
telnet 10.10.82.60 80GET / HTTP/1.1host: telnet- hit return a few times to get flag: THM{web_server_25352}
What is the flag hidden in the SSH server header?
- We got this flag using our initial Nmap scan: THM{946219583339}
We have an FTP server listening on a nonstandard port. What is the version of the FTP server?
- initial scan shows “vsftpd 3.0.3”
We learned two usernames using social engineering: eddie and quinn. What is the flag hidden in one of these two account files and accessible via FTP?
- add users eddit and quin to txt file
hydra -t 16 -L users.txt -P /usr/share/wordlists/rockyou.txt ftp://10.10.82.60 -s 10021specifying port because not common- user eddie pass jordan - user quinn pass andrea
ftp quinn@10.10.82.60 -P 10021get ftp_flag.txtexitcat ftp_flag.txtTHM{321452667098}
Browsing to http://MACHINE_IP:8080 displays a small challenge that will give you a flag once you solve it. What is the flag?
- we get the flag from running
nmap -sNsening null bytes THM{f7443f99}