Team Tryhackme Writeup

Room link: https://tryhackme.com/room/teamcw
Note: This room is Free

Enumeration

Add Target to /etc/hosts file

echo "10.10.132.103      team.thm" >> /etc/hosts

Open Ports is

FTP 21

SSH 22

HTTP 80

Gobuster

gobuster dir -u http://team.thm/ -w directory-list-2.3-medium.txt -x php,html,txt

Lets check robots.txt file

maybe its username but for what FTP Or SSH

Subdomain Brute Force

wfuzz -c --hw 977 -u http://team.thm -H "Host: FUZZ.team.thm" -w /usr/share/wordlists/seclists/Discovery/DNS/subdomains-top1million-5000.txt