battery — TryHackMe — Writeup

nmap -A -T4 -p- -v <ip>

nmap
nmap
website
page source
dirbuster
dirbuster
/forms.php
/acc.php
/admin.php
register
register
login
report
main function
main function
options function
update function
users function
null byte injection
Login
command (/forms.php)
XML Entities
request
response
request
response
cyber’s credential
ssh
flag1.txt
sudo permission
run script
file’s permission
Kernel’s version
get root
user flag
root flag

HAPPY HACKING

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store