Another day, another challenge…
In this post, we’re starting a new series the Advent of Cyber series that is hosted by TryHackMe. This is the third year of the Advent of Cyber where a challenge is released everyday leading to Christmas. In total there will be 25 challenges. In these challenges, we’re McSkidy an elf trying to save Christmas.
In our tenth challenge, we’re presented with a scenario where McSkidy needs to perform a security assessment as Grinch Enterprises has caused damaged to the Best Festival Company’s infrastructure. The security assessment is to determine how the grinch was able to do the damage and what services the grinch exploited to gain access to the system.
Topics explored in this challenge are IP addresses which are logical representation of an address. An IP address is represented as four decimal numbers between the 0-255. Ex: 192.168.0.255. Every computer or host has an IP address. The next topics are protocols and servers. A protocol is an agreed upon method to communicate between two parties. In our instance, it’s an agreed upon method to communicate between a client (in most cases our computer) and a server. The next topic is a port. Now we can have multiple services running on the same server how can we determine the service? This is where the port comes in. You can think of the port as a street address. There are multiple homes on a street but there’s one home that matches a particular street address. The final topic is a program called Network mapper or Nmap. Nmap allows is to look at a network and determine what is open. This is helpful because we can determine if our network is too accessible or if we have it locked down just right. This is going to be helpful in McSkidy security assessment.
Can we use the information we learned about Nmap, IP addresses, ports, and servers to determine how the grinch gained access to the system?
Well… click the below video to find out!
If you enjoy my content, buy me a coffee. Link –> http://buymeacoffee.com/thefluffy007