Capture The Flag competition solutions and walkthroughs
CTF Writeups
First, add your IP to /etc/hosts to make the target accessible while conducting scans. Reconnaissance sudo nmap -sV -sC knife.htb Let’s check port 80 to see whether there is an application or any static page available. Begin to fuzz; I prefer gobuster. No juicy results appeared. Therefore,
CTF Writeups
Begin by adding the machine IP to /etc/hosts. nano /etc/hosts CTRL + S CTRL + X Conduct a port scan -> Service + default script scan: sudo nmap -sV -sC -Pn broker.htb Full port scan: sudo nmap -p- -Pn --min-rate 10000 broker.htb Identify all open ports: Service + script
CTF Writeups
Begin by adding the machine IP to /etc/hosts. nano /etc/hosts Reconnaissance Conduct nmap scans respectively -> Full port scan: sudo nmap -p- -Pn --min-rate 10000 bashed.htb Full port coverage + skip host discovery to avoid ICMP-based false negatives on firewalled hosts. Service + default script scan: sudo nmap
CTF Writeups
Start by adding the machine IP to /etc/hosts. This avoids having to copy-paste the IP address on every command throughout the engagement. nano /etc/hosts Fast Service Scan nmap -sC -sV -T4 -Pn mirai.htb Port 22 (SSH), 53 (DNS), 80 (HTTP), and a few others are open. The
CTF Writeups
Add the correlated IP address to the /etc/hosts file. Run the following nmap scans: nmap -sV -sC -Pn shocker.htbnmap -sV --script=vuln -Pn shocker.htb Service detection and banner grabbing with default scripts: Full port scan: Find non-standard ports faster with --min-rate: The service + CVE vulnerability scan took
CTF Writeups
Port Scanning Begin with port scanning via nmap: Full Scope → nmap -p- --max-rate 10000 sense.htb Ports 80 (HTTP) and 443 (HTTPS) are open. Service...