Post

Sws101_ctfjournal7

Posted Updated
By Tshering Phuntsho 1 min read

Try Hack Me Room: Wgel CTF

CTF

Let’s run nmap and check what ports are open

CTF

We discovered 2 open ports 22 and 80

Since port 80 is up, let’s check the website.

CTF

It’s just a normal Apache2 page.

Task1: Wgel CTF

With the ffuf, let’s check for the directories.

CTF

There are only sitemap directories.

CTF

When i check it’s only a website. Let’s find further directories. There is .ssh, when I access the site, I can see an ssh key available. Let’s grab it and try to get an ssh session.

CTF

Inside the the is_rsa file there is a private key

CTF

CTF

Got id_rsa file. Let’s try to crack it. Lets try to login with ssh. To get the SSH session we need a username to connect with this key. Remember there was a name commented there (Jessie). I am going to use it.

CTF

User flag

CTF

ANS: 057c67131c3d5e42dd5cd3075b198ff6

Root flag

Now it’s time to get root access. The procedure will be walkthrough in part2.
ANS: b1b968b37519ad1daa6408188649263d

SWS101, CTF_Journal7
SWS101
This post is licensed under CC BY 4.0 by the author.

Trending Tags

SWS101 DBS101 CTF SWS202 WEB