Infosec

First post of 2025. Only three months late, oops! Blue Team activities don’t often get any CTFs. It’s a lot more fun to exploit some fun vulnerability and get root access than sort through countless logs. However! I’ve been meaning to go back to the blue team focused tools. On the CTFs I’ve done I felt a lot more comfortable doing blue team things than I have with anything else. I’m still not sure what I want to specialize in, but analysis is my jam at the moment. ...

CTF Time! This time I’m trying out TryHackMe’s Fowsniff CTF. I’m going into this blind with no prior knowledge, so expect some detours and dead-ends. I’m also going to be censoring any flags/passwords/hashes out. Room overview This boot2root machine is brilliant for new starters. You will have to enumerate this machine by finding open ports, do some online research (its amazing how much information Google can find for you), decoding hashes, brute forcing a pop3 login and much more! ...

OverTheWire is a great way to learn Linux commands, and a bit of “““hacking”””. From their own site: The wargames offered by the OverTheWire community can help you to learn and practice security concepts in the form of fun-filled games. There are a few wargames/rooms that are offered. I’ll be going through the ‘Bandit’ room, which is the easiest/first. The Bandit wargame is aimed at absolute beginners. It will teach the basics needed to be able to play other wargames. ...