Showing 49 Result(s)

Tryhackme: Nmap Basic Port Scans

The Room: “Learn in-depth how nmap TCP connect scan, TCP SYN port scan, and UDP port scan work.” https://tryhackme.com/room/nmap02 Task 2: TCP and UDP Ports 2.1. Which service uses UDP port 53 by default? DNS 2.2. Which service uses TCP port 22 by default? SSH 2.3. How many port states does Nmap consider? 6 2.4. …

Tryhackme: Wireshark: The Basics

The Room: “Learn the basics of Wireshark and how to analyse protocols and PCAPs.” https://tryhackme.com/room/wiresharkthebasics Task 1: Introduction 1.1. Which file is used to simulate the screenshots? http1.pcapng 1.2. Which file is used to answer the questions? Exercise.pcapng Task 2: Tool Overview 2.1. Read the “capture file comments”. What is the flag? TryHackMe_Wireshark_Demo 2.2. What …

Tryhackme: Threat Intelligence for SOC Writeup

The room: “Learn how to utilise Threat Intelligence to improve the Security Operations pipeline.” https://tryhackme.com/room/threatintelligenceforsoc 2.1. How many unique IP addresses were provided in the IOC list? We need to remove duplicates from the IP list given to us. We can use many tools such as Excel, Dcode, etc. to remove duplicates. Removing duplicate IP …

Tryhackme: Snapped Phish-ing Line Writeup

The room: “Apply learned skills to probe malicious emails and URLs, exposing a vast phishing campaign.“ https://tryhackme.com/r/room/snappedphishingline 1.1. Who is the individual who received an email attachment containing a PDF? William McClean 1.2. What email address was used by the adversary to send the phishing emails? Accounts.Payable@groupmarketingonline.icu 1.3. What is the redirection URL to the …