TryHackMe Writeups

TryHackMe Writeups

Series

TryHackMe Walkthroughs

Archangel Writeup: Log Poisoning and $PATH Hijacking on TryHackMe
Credits Room: “Archangel”Creator: Archangel Introduction The Target: Exploiting LFI to get RCE via Log Poisoning The Problem: The default ../ path was filtered by the server when trying to exploit the LFI The Tools: RustScan, Feroxbuster & FFUF ...
Feb 8, 202612 min read10
Bypassing PHP Security with LD_PRELOAD and Chankro on TryHackMe
Credits Room: “Bypass Disable Functions”Creator: stuxnet Introduction The Target: Bypassing disabled PHP functions to get RCE and the flag The Problem: Most “easy” shell functions, like system, exec, and shell_exec, were blocked by the server’s dis...
Feb 1, 20269 min read27