TryHackMe — Watcher WalkThrough

Source

Enumeration

Nmap Scan
Nmap Scan
GoBuster Result
robots.txt
Flag 1
secret text
Homepage
LFI Confirm
FTP Creds
Flag 2
php reverse shell
Upload php file
netcat listener
access php file
reverse connection
Flag 3
Sudo Priv
flag 4
Edit cow.sh
Netcat listener
Flag 5
Note
Script directory
Will_Script.py
cmd.py
Python one-liner
Netcat listener
run script
reverse connection
backup key
decoded

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store