THM Creative v2.2

Posted May 25, 2024

By 0xskar

1 min read

Creative v2.2

TryHackMe machine. Exploit a vulnerable web application and some misconfigurations to gain root privileges.

Enumeration

sudo nmap -T4 -p- $target_ip -vvv
sudo nmap -sC -sV -O -p$open_ports $target_ip -vvv

Port 80 - Web application

Nothing to see here on the main website, tried looking for directories but no resuls. Fuzzing for subdomains with wfuzz then add to /etc/hosts.

wfuzz -c -w /usr/share/seclists/Discovery/DNS/bitquark-subdomains-top100000.txt -u http://creative.thm -H "Host: FUZZ.creative.thm" --hc 404,301

Adding beta.creative.thm to /etc/hosts.

beta.creative.thm

Intercept the request in burpsuite and send to the repeater.

Walkthrough, TryHackMe

THM TryHackMe CTF

This post is licensed under CC BY 4.0 by the author.

Recently Updated

Trending Tags

TryHackMe linux nmap Enumeration web CTF hydra Linux security THM

Contents

Trending Tags

TryHackMe linux nmap Enumeration web CTF hydra Linux security THM

A new version of content is available.