Today, I will guide you on doing Internal Challenges Room. In this room, we will do role play in Blackbox Penetration Testing which it will involve a real-life scenario. This room has been labeled as difficulty-rated HARD The following is

Continue ReadingTryHackMe: Internal Walkthrough

In this post, we will learn on Year of the Dog room which it exposes to the SQL Injection attack and Remote Code Execution (RCE). The room difficulty rated as HARD and I have the completed it after 3 whole

Continue ReadingTryHackMe: Year of the Dog Walkthrough

Today, I will do some walkthrough on the room called Envizon which is been difficulty rated HARD. I like the slogan for this room which is “Attacking the pentesters”. For this room, I have received a lot of advice that

Continue ReadingTryHackMe: Envizon Walkthrough

On this post, I would discuss the Red Teaming activity where some organization will be using those team to test the system or application. For those are not familiar with the terms “Red Teaming”, it s a team which will

Continue ReadingRed Teaming Review

In this post, I would like to share a walkthrough on Vulnversity room from TryHackMe. For this room, you will learn about “how to abuse Linux SUID” For those are not familiar with Linux SUID, it’s a Linux process that

Continue ReadingTryHackMe: Vulnversity Walkthrough

For today walkthrough, let look into Rootme Walkthrough which it tests the player on the information gathering skills and test on privileged access knowledge. We started by deploy the machine as usual. Once the machine have been successfully run, we

Continue ReadingTryHackMe: Rootme Walkthrough

For this post, I would like to share the knowledge and skills that I just acquire by doing this machine. Attacktive Directory is an old machine and there might already have a lot of walkthrough on this machine out there.

Continue ReadingTryHackMe: Attacktive Directory Walkthrough

On this post, I would like to share the trick to tackle Basic Pentesting. The objective of this machine would be to gain skills and knowledge on web application hacking and privilege escalation. From the information that we can see

Continue ReadingTryHackMe: Basic Pentesting

In this challenges, i would experience how Security Event been analysis by Security Analyst. Our first task to download the pcap file into your machine and analysis it. For this activity, you will need to install and use wireshark to

Continue ReadingTryHackMe: Overpass 2 Walkthrough

In this post, I would like to share some challenges on a basic level of Local File Inclusion(LFI) attack on the TryHackMe. For those are not familiar with LFI attack, it’s a method which the attacker to trick the web

Continue ReadingTryHackMe: Inclusion – A beginner level LFI challenge