Member-only story
HeartBleed TryHackme Walkthrough
2 min readSep 1, 2024
Room link: https://tryhackme.com/room/heartbleed
Note: This room is for Premium Members Only. who purchased THM premium membership.
Description:
SSL issues are still lurking in the wild. Can you exploit this web servers OpenSSL?
Related Hosting Links
- TryHackMe:
- Hosted as a subscriber only room at the time of writing.
- Link: https://tryhackme.com/room/heartbleed
Once the machine is deployed, let’s go ahead and scan it with nmap
nmap -sV --script vuln 52.209.186.169
The namp scan shows us that there is ssl-heartbleed Vulnerability here
Let’s Try to find module in metasploit
service postgresql start
Looks like there is! Let’s go ahead and select it for use and check what options we have to set
