Team — TryHackMe

7 min readMar 8, 2021

This is the write-up for beginner friendly boot2root machine from TryHackMe named Team.This room is available here:

The task is simple and that is to get both user and root flag.So as always let’s begun the Enumeration of the box with NMAP.



# Identify the list of services running on the target machine
⇒ sudo nmap -sS -Pn -T4 -p-

└─$ sudo nmap -sS -Pn -T4 -p-
Host discovery disabled (-Pn). All addresses will be marked 'up' and scan times will be slower.
Starting Nmap 7.91 ( ) at 2021-03-05 15:14 EST
Nmap scan report for
Host is up (0.021s latency).
Not shown: 65532 filtered ports
21/tcp open ftp
22/tcp open ssh
80/tcp open http
Nmap done: 1 IP address (1 host up) scanned in 108.33 seconds

# Perform further information gathering on the open ports identified above
⇒ sudo nmap -O -A -Pn -T4 -p21,22,80

└─$ sudo nmap -O -A -Pn -T4 -p21,22,80…




Software Developer having keen interest in Security, Privacy and Pen-testing. Certs:- Security+,PenTest+,AZ900,AZ204,AZ500