Member-only story
THM - Whats Your Name?
6 min readApr 26, 2025
A writeup for the room “Whats Your Name?” on TryHackMe
Utilise your client-side exploitation skills to take control of a web app.
https://tryhackme.com/room/whatsyourname
Footprinting
We can start by doing a scan with nmap.
nmap -sS -p- MACHINE_IPThere are three open ports: 22, 80, 8081.
The websites on port 80 and 8081 seem empty.
However, if we look at the source code, we can see a comment about a login.php page.
Nothing more can be found here.
If we try to add worldwap.thm to the hosts file as described in the room details, we will be able to see a website.
echo worldwap.thm MACHINE_IP >> /etc/hosts
