Network Security: Net Sec Challenge (TryHackMe)

This article will cover the Net Sec Challenge write-up under the Jr Penetration Tester on THM.

Introduction

Use this challenge to test your mastery of the skills you have acquired in the Network Security module. All the questions in this challenge can be solved using only nmap, telnet, and hydra.

Answer the questions below

Launch the AttackBox and the target VM.

Challenge Questions

You can answer the following questions using Nmap, Telnet, and Hydra.

1. What is the highest port number being open less than 10,000? 8080

   

2. There is an open port outside the common 1000 ports; it is above 10,000. What is it? 10021

   

3. How many TCP ports are open? 6

   count the TCP ports showing here

   

4. What is the flag hidden in the HTTP server header? THM{web_server_25352}

   

5. What is the flag hidden in the SSH server header? THM{946219583339}

   

6. We have an FTP server listening on a nonstandard port. What is the version of the FTP server? vsftpd 3.0.5

   

7. We learned two usernames using social engineering: eddie and quinn. What is the flag hidden in one of these two account files and accessible via FTP? THM{321452667098}

   

   

8. Browsing to http://MACHINE_IP:8080 displays a small challenge that will give you a flag once you solve it. What is the flag? THM{f7443f99}

   

Summary

Congratulations. In this module, we have learned about passive reconnaissance, active reconnaissance, Nmap, protocols and services, and attacking logins with Hydra.

Answer the questions below

Time to continue your journey with a new module.

Thank you for reading my article. Please leave any questions or comments on improving my learning journey and the Lab THM challenges.