## https://sploitus.com/exploit?id=A5368E12-04A6-5A5A-84C4-0E54E6A84958
# SimpleCTF-THM-Relatory
First CTF successfully completed! This repo documents my walkthrough of TryHackMe's Simple CTF. It covers network reconnaissance (Nmap), web exploitation (CVE-2019-9053), and credential cracking. As a dev, it was great to pivot from SQLi to a Root shell by leveraging Sudo misconfigurations. Educational purposes only.
This repository contains my technical documentation and step-by-step walkthrough for the Simple CTF room on TryHackMe. This marks my first successfully completed CTF challenge, covering the full attack lifecycle from initial reconnaissance to root privilege escalation.
Key Skills Applied:
Reconnaissance: Service enumeration with Nmap and directory brute-forcing with Gobuster.
Web Exploitation: Exploiting CVE-2019-9053 (Time-based Blind SQL Injection).
Credential Cracking: Hash analysis and wordlist attacks with Python.
Privilege Escalation: Leveraging misconfigured Sudo permissions (Vim) to gain Root access.