Try Hack Me: Epoch

Epoch is a new easy room out on Try Hack Me. Lets dive right in:

We will first start as usual with an NMAP scan

Heading over to port 80 we see the following:

Lets try for Command Injection:

Easy day utilizing a | id we get the id back. Now we can get a reverse shell utilizing a bash script:

Make sure to start your nc listener and then click on convert, you should now have a reverse shell.

Easy day, this next part took me a minute, I realized I was in a docker when I did an ls -la after utilizing cd ../../../../../ and from there looked at what environment I was in with env, which is where I found the flag:

Like I said, easy and quick room thanks for reading.