Member-only story
THM - Hijack
7 min readMar 23, 2025
A writeup for the room Hijack on TryHackMe
Misconfigs conquered, identities claimed.
Footprinting
We can start by doing a scan with nmap.
nmap -sS MACHINE_IP
The scan reveals the following open ports and services:
- Port 21: FTP
- Port 22: SSH
- Port 80: HTTP
- Port 111: RPC
- Port 2049: NFS
FTP
We can try to connect to the FTP service using the anonymous user.
ftp MACHINE_IPBut it doesn’t work.
HTTP
We can visit the website hosted on the target machine.
The website is a simple page with a login/signup form and a link to the admin page.
