Tag feed

#thm

33 posts2 followers

Explore Hashnode

Alternatives

Trending tags this week

SsOn4jitblog.sonajit.inDec 11, 2025 · 5 min read

THM Merry XSSmas Writeup: Learning Reflected and Stored XSS Attacks

Introduction The Merry XSSmas room demonstrates how improper input handling can lead to dangerous client-side vulnerabilities. This challenge focuses on two common web vulnerabilities: Reflected XSS

0

SsOn4jitblog.sonajit.inDec 5, 2025 · 5 min read

THM W1seGuy Writeup: Learning XOR Weakness and Known Plaintext Attacks

Introduction The W1seGuy room demonstrates a classic cryptographic mistake: using XOR encryption with a short repeating key. This challenge highlights how predictable plaintext combined with weak XOR

0

TThacklabtry-hack-me-write-ups.hashnode.devNov 21, 2025 · 4 min read

THM - Break Out the Cage: Step-by-Step Guide

Initial Reconnaissance sudo nmap -sS -sV -T4 TARGET_IP -vvv Key Findings: HTTP service running FTP service running SSH service available Directory Discovery The main HTTP page showed Nicolas Cage content with limited information The directory b...

0

TThacklabtry-hack-me-write-ups.hashnode.devNov 21, 2025 · 2 min read

THM - MD2PDF box writeup

Initial Enumeration Nmap Scan Scanning for open ports and services: nmap -sS -sV -sC TARGET_IP Results: Port 80: HTTP Port 5000: HTTP (admin panel) Vulnerability Discovery Gobuster Enumeration Running directory brute force to discover hidden en...

0

TThacklabtry-hack-me-write-ups.hashnode.devNov 21, 2025 · 5 min read

THM - b3dr0ck

Description Fred Flintstone & Barney Rubble! Barney is setting up the ABC web server and trying to use TLS certificates to secure connections, but he's having trouble. Here's what we know: nginx on port 80, redirecting to a custom TLS webserver on p...

0

TThacklabtry-hack-me-write-ups.hashnode.devNov 21, 2025 · 5 min read

THM - Basic Pentesting

Initial Enumeration Nmap Port Scan Starting with a full port scan to identify all open services: sudo nmap -sS -T4 -p- TARGET_IP Service Version Detection Once ports are identified, scanning for service versions and running default scripts: sudo nma...

0

AMAbdelrhman Mgahedblog.mgahed.comOct 9, 2025 · 4 min read

Simple CTF Walkthrough

Enumeration sudo nmap -sT -sV -A -p- 10.10.134.123 -oN enum.txt Result: Nmap scan report for 10.10.134.123 Host is up (0.20s latency). Not shown: 65532 filtered tcp ports (no-response) PORT STATE SERVICE VERSION 21/tcp open ftp vsftpd 3.0...

0

MSMOHIT SINGH PAPOLAblog.reapsec.comOct 1, 2025 · 3 min read

Juicy Details Room on TryHackMe: Complete Walkthrough and Guide

LINK - https://tryhackme.com/room/juicydetails So for this challenge we have given Download Files So let’s download those Now We are asked to answer the question based on the logs files we got so Ques 1) What tools did the attacker use? (Order by t...

0

AMAbdelrhman Mgahedblog.mgahed.comSep 16, 2025 · 3 min read

Agent Sudo CTF Walkthrough

Enumeration nmap -sV -sT -A -p- 10.10.255.113 Result: # Nmap 7.93 scan initiated Tue Sep 16 16:26:27 2025 as: nmap -sV -sT -A -p- -oN enum.txt 10.10.255.113 Nmap scan report for ip-10-10-255-113.eu-west-1.compute.internal (10.10.255.113) Host is up ...

0

MSMOHIT SINGH PAPOLAblog.reapsec.comAug 28, 2025 · 3 min read

Smag Grotto Room on TryHackMe: Complete Walkthrough and Guide

LINK - https://tryhackme.com/room/smaggrotto RECON/SCANNING So First We Will Run Nmap/NmapAutomator to scan the target for open ports. So as you can see we got two open ports . WEB ENUMERATION Now Let’s Check out Port 80 First . Got a Web Page So...

0

#thm

Search Hashnode

#thm

Explore Hashnode

Trending tags this week

THM Merry XSSmas Writeup: Learning Reflected and Stored XSS Attacks

THM W1seGuy Writeup: Learning XOR Weakness and Known Plaintext Attacks

THM - Break Out the Cage: Step-by-Step Guide

THM - MD2PDF box writeup

THM - b3dr0ck

THM - Basic Pentesting

Simple CTF Walkthrough

Juicy Details Room on TryHackMe: Complete Walkthrough and Guide

Agent Sudo CTF Walkthrough

Smag Grotto Room on TryHackMe: Complete Walkthrough and Guide