This post will look through some of the different Advent of Cyber 2022 challenges located on Try Hack Me. You can find the challenges here: https://tryhackme.com/room/adventofcyber4 DAY 2: Day 1 is not too difficult and we will not be looking at it. Day 2 is all about logs. …

This is an easy box from VulnHub which can be found at the following location: Funbox: Scriptkiddie This website uses 'cookies' to give you the best, most relevant experience. Using this website means you're happy with…www.vulnhub.com Starting off with a NMAP scan we can see that there are a few ports open Whenever I see port 21 or 139/445 open I always run NMAP on them to see if A) anonymous…

Today we will be looking at an easy box on Try Hack Me called corridor. Let’s jump right into it with an NMAP scan: We can see that port 80 (HTTP) is up and running. Let’s head over to there and check it out, and as expected we are faced…

Today we will be looking at an easier box named Tiki that can be downloaded on VulnHub. We will start off with an NMAP scan as usual: From here we see that SMB is open, looking at it with smbclient -L we can see that we are able to see…

Today we will be looking at Healthcare which is a VulnHub box. As usual we start off with an NMAP scan and see that both port 21 and 80 are open. We see both port 80 and 21, lets enumerate those some more:

Today we are going to be looking at Invoke-Mimikatz which can be found here: https://github.com/PowerShellMafia/PowerSploit/blob/master/Exfiltration/Invoke-Mimikatz.ps1 For this lab we will be using a Domain Controller and also a Windows 10 machine that is part of the domain. Both have Windows Defender and Real Time Protection turned on. …

Today we are going to take a look at DerpNStink on VulnHub. As usual we will start off with an NMAP scan of the Vulnerable Machine. We can see 4 ports that are open, FTP won’t give us much yet and when looking deeper into port 8000 it seemed like…