For Business Reasons (without Metasploit) — TryHackMe

0xsanz
6 min readJan 31, 2021

This is a write-up for a TryHackMe’s room named “For Business Reasons”. This room is rated Hard

This room can be found here:- https://tryhackme.com/room/forbusinessreasons

Description:

In your network scan, you found an unknown VM…

You find a Host run by MilkCo*, run by a competent but not perfect team of sysadmins… But teams make mistakes.

Immature teams often do things like have all the elements of security like strict firewalls but then throw it all away by not understanding a technology or using shared passwords.

This is a hyper-realistic room. This room also features a difficult pivot.

Enumeration:

# Identify the list of services running on the target machine

sudo nmap -sS -Pn -T4 -p- 10.10.53.149

# Perform further information gathering on the open ports identified above — 80 in our case

sudo nmap -O -A -Pn -T4 -p80 10.10.53.149

--

--

0xsanz

Software Developer having keen interest in Security, Privacy and Pen-testing. Certs:- Security+,PenTest+,AZ900,AZ204,AZ500