Share
## https://sploitus.com/exploit?id=331FDB90-7E05-565A-A932-0DF6DC6FBAB2
# ๐ THM Writeups
Hands-on TryHackMe machine writeups documented during active learning.
   
*Full process documented โ recon to root, including what failed and why.*
---
## ๐ฅ๏ธ Machines
| Machine | Difficulty | OS | Key Techniques |
|---------|------------|----|----------------|
| [BLUE](./BLUE) | Easy | Windows | EternalBlue (MS17-010), SMB exploitation |
| [TOMGHOST](./TOMGHOST) | Easy | Linux | Apache Tomcat, Ghostcat (CVE-2020-1938) |
| [IGNITE](./IGNITE) | Easy | Linux | Fuel CMS 1.4 RCE, privilege escalation |
| [ROOTME](./ROOTME) | Easy | Linux | Apache, file upload bypass, SUID Python |
---
## โ๏ธ Methodology
Every machine follows the same structured approach:
```
Reconnaissance โ passive info gathering
โ
Enumeration โ nmap, gobuster, searchsploit
โ
Vulnerability โ manual analysis, CVE lookup
Discovery
โ
Exploitation โ metasploit / manual
โ
Privilege โ linpeas, SUID, sudo -l
Escalation
โ
Post Exploitation โ flags, loot
```
---
## ๐ ๏ธ Tools Used
    
---
## ๐ Each Machine Folder Contains
- Full notes with commands and actual output
- Reasoning behind every step taken
- Screenshots of key findings
- Dead ends โ what didn't work and why
---
## โ ๏ธ Disclaimer
All machines documented here are **intentionally vulnerable systems** hosted on TryHackMe.
These techniques are practiced strictly for educational purposes.
Never test systems without explicit authorization.
---
*Adarsh Dubey ยท Cybersecurity Student*