2021年9月19日 · Nax is a medium difficulty machine, that focuses on CVE-2019–15949 (Nagios XI Authenticated Remote Command Execution) and what might go wrong when you are way too lazy to upgrade on a newer...

This repository contains a few of my writeups I made for the famous and addictive TryHackMe CTF (Capture The Flag) challenges. View on GitHub TryHackMe_writeups

2021年3月29日 · Today we’re going to solve another boot2root challenge called “Nax “. It’s available at TryHackMe for penetration testing practice. This lab is of medium difficultly if we have the right basic knowledge to break the labs and are attentive to all the details we find during the reconnaissance.

2024年4月18日 · TryHackMe Hackfinity Battle 2025 -CTF Writeups This writeup covers some of the challenges I managed to solve during the Hackfinity Battle 2025 CTF. The event ended last night, and while…

2020年7月17日 · Nax is a medium difficulty box on TryHackMe. Below is a step by step walkthrough to root this box. Let’s start by running nmap -A [machine ip]. We end up with the following results. It looks like there’s sites running both on http and https, let’s take a look at both of them to see what’s going on.

2020年4月25日 · Nax Identify the critical security flaw in the most powerful and trusted network monitoring software on the market, that allows a user authenticated execute remote code execution. 2.

2024年10月5日 · 简介：识别市场上最强大、最可信的网络监控软件中的关键安全缺陷，该软件允许用户通过身份验证执行远程代码执行。 你能完成这个挑战吗? 第一题：你找到了什么隐藏的文件？ 第二题：谁是这个文件的作者？ （如果您在下载的图像上运行该工具时遇到有关未知 ppm 格式的错误 -- 请使用 gimp 或其他绘画程序打开它并导出为 ppm 格式，然后重试！ 第三题：你找到的用户名是什么？ NPIET 是一种以图像为基础的编程语言，其命令通过图像中的像素颜色和排 …

Identify the critical security flaw in the most powerful and trusted network monitoring software on the market, that allows an user authenticated execute remote code execution. Are you able to complete the challenge? The machine may take up to 5 minutes to boot and configure. WARNING: I stripped out the answers, passwords, flags and co.

2025年2月16日 · Pyrat (CTF) - TryHackMe Write-up and Management Summary This writeup explains my approach to Pyrat. It contains mistakes and correct approach, explaining the full process involved, without…

[THM] Nax Walkthrough 03 Aug 2020. Today we’re back with another intermediate level room from TryHackMe called Nax created by Stuxnet. I enjoyed the steganography challenge in the box, but found that the exploitation phase was very straightforward and simple.