Open in app

Sign in

Write

Sign in

Member-only story

Binex TryHackme Writeup

Vijay Kumar Gupta
8 min readAug 31, 2024

Room link: https://tryhackme.com/room/binex
Note: This room is for Premium Members Only. who purchased THM premium membership.

Topics

  • Network Enumeration
  • Linux Enumeration
  • SMB Enumeration
  • Brute Forcing (SSH)
  • Abusing SUID/GUID
  • Buffer Overflow
  • Exploiting PATH Variable

Enumeration

The hint showed that the longest username in RID range 1000–1003 has an insecure password. We then run enum4linux to enumerate the users.

enum4linux -a 10.10.156.34

So now we have users

kel, des, tryhackme, noentry

Now let’s get access to the system via this user by brute-forcing the SSH service Using hydra tool.

hydra -l tryhackme -P rockyou.txt ssh://10.10.156.34

--

--

Vijay Kumar Gupta
Vijay Kumar Gupta

Written by Vijay Kumar Gupta

450 Followers
2 Following

Vijay Gupta is an inspiring public speaker and social entrepreneur who has dedicated his life to bringing about positive change and empowering communities.

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams