Cyber Kill Chain | TryHackMe Writeup

SolveniteSolvenite
2 min read

Task 1. Introduction

How many phases comprise the Cyber Kill Chain?

7

Task 2. Reconnaissance

What is the term for using search engines to reveal sensitive information and confidential files?

Google dorking

What type of reconnaissance is it where the attacker checks the social media pages?

Passive reconnaissance

Task 3. Weaponization

What technique is mentioned to evade detection by making it challenging to analyse the malicious code?

Obfuscation

What built-in feature makes creating a malicious MS Office document possible?

Macro

Task 4. Delivery

What method involves showing advertisements on legitimate websites to redirect users to malicious pages?

Malvertising

What phishing attack sends text messages with malicious links or instructions to download malware?

Smishing

Task 5. Exploitation

What type of exploit is used before the vendor becomes aware of a vulnerability?

Zero-day Exploit

What technology is mentioned to prevent an attacker from gaining access even with valid login credentials?

MFA

Task 6. Installation

What tactic allows attackers to execute operating system commands on a target via a web browser interface?

Web shell

What technique is mentioned to prevent the execution of unauthorised or malicious software by only allowing approved applications to run?

Allowlisting

Task 7. Command and Control (C2)

What is the name of the tactic where data is hidden within DNS queries?

DNS Tunnelling

What protocol would the attacker use to smuggle his data as encrypted web traffic?

HTTPS

Task 8. Actions on Objectives

What is the term for stealing sensitive files from a target network?

Data Exfiltration

What principle limits who can access sensitive systems and data to minimise damage caused by an attacker?

Principle of least privilege

What type of attack involves encrypting files and demanding payment in exchange for the decryption key?

Ransomware

Task 9. Conclusion

What is the flag after you complete the static site?

THM{CKC_NJHER*****}

Congratulations on finishing this room. It is time to explore the next room.

0
Subscribe to my newsletter

Read articles from Solvenite directly inside your inbox. Subscribe to the newsletter, and don't miss out.

tryhackmeTryHackMe Walkthroughtryhackmewalkthroughtryhackme, tryhackme avenger, tryhackme walkthrough, cybersecurity, privilege escalation, wordpress exploitation, reverse shell, rdp access, hoaxshell, bug bounty, CTF#TryHackMe #Cybersecurity #Infosec #LearningPath #BeginnerFriendly #CTF (Capture The Flag – relevant to hacking practice) #Linux #Networking #CybersecurityLearning #TechJourney #SelfTaught#cybersecuritycybersecurityCyberSeccybercybercyber securityCyber kill chainSecurityWrite Up#walkthrough

Written by

Solvenite
Solvenite