TryHackme — Jack Write up

https://tryhackme.com/room/jack

Setup

First, we will connect to the VPN. If you are not familiar with the process go through this room

Once we are connected we will deploy the machine (note that in the room description there is a request for you to add jack.thm to /etc/hosts):

Let’s add jack.thm to the /etc/hosts file you can use leafpad or vim for edit this file

Enumeration

nmap -T4 -sS -sC -sV jack.thm

We have Two Ports SSH =21 and HTTP=80 without username and password we can’t login through SSH. So Enumerate Port 80 Open Browser and search

http://jack.thm

From the nmap results, we can see the /wp-admin in the results which takes us to the WordPress login form, but we don’t have any credentials yet.

Using WPScan

wpscan - url jack.thm -e u