CTF WriteupsAugust 1, 2024

TryHackMe: Billing

Writeup for the Billing room on TryHackMe — exploitation of a billing application vulnerability.

#tryhackme#ctf#writeup#web

TryHackMe: Billing — Writeup

Overview

The Billing room on TryHackMe challenges you to exploit a billing application to gain initial access and escalate privileges.

Enumeration

bash

nmap -sV -sC -p- TARGET_IP

Start by scanning the target to discover open ports and running services. Look for web services and identify the billing application.

Initial Access

After identifying the web application, look for known vulnerabilities in the billing software. Check for default credentials, SQL injection, or command injection vectors.

Privilege Escalation

Once you have a foothold, enumerate the system for privilege escalation opportunities using tools like LinPEAS or manual enumeration of SUID binaries, cron jobs, and misconfigurations.

Key Takeaways

Always start with thorough enumeration
Check for known CVEs in identified software
Enumerate privilege escalation paths systematically