Infosec

CTF Time! This time I’m trying out TryHackMe’s Fowsniff CTF. I’m going into this blind with no prior knowledge, so expect some detours and dead-ends. I’m also going to be censoring any flags/passwords/hashes out. Room overview This boot2root machine is brilliant for new starters. You will have to enumerate this machine by finding open ports, do some online research (its amazing how much information Google can find for you), decoding hashes, brute forcing a pop3 login and much more! ...

Basic Pentesting is a room that, unsurprisingly, is about the basics of Pentesting. It’s more of a walkthrough than a challenge. The room itself has a walkthrough from John Hammond featured right there on the page for you to watch and follow along if you want. Let’s give this a go. Deploy the machine and connect to our network Easy peasy, done. Find the services exposed by the machine This question doesn’t require any answers but we’ll run an nmap scan over the machine. Here’s what we get: ...

OverTheWire is a great way to learn Linux commands, and a bit of “““hacking”””. From their own site: The wargames offered by the OverTheWire community can help you to learn and practice security concepts in the form of fun-filled games. There are a few wargames/rooms that are offered. I’ll be going through the ‘Bandit’ room, which is the easiest/first. The Bandit wargame is aimed at absolute beginners. It will teach the basics needed to be able to play other wargames. ...