First of all, we need to have a good understanding of our target. Because the only way we can come up with an idea to gain access to the target is by understanding the target. So, as the first step…

SystemWeakness's platform is  dedicated to cybersecurity education and awareness, offering insights into common security vulnerabilities, attack techniques, and risk mitigation strategies. Through articles, tutorials, and security advisories, SystemWeakness offers insights into securing software applications, networks, and systems from cyber threats. Readers can learn about secure coding practices, penetration testing methodologies, and incident response procedures to strengthen their cybersecurity posture and protect against cyber attacks.

System Weakness

The post provides a detailed walkthrough of an information gathering Capture The Flag (CTF) challenge aimed at finding 5 flags. Techniques include using nmap for service enumeration, inspecting robots.txt for hidden information, directory enumeration with gobuster, searching for backup files using ffuf, and mirroring a website with httrack to uncover hidden data. Each step is methodically explained with commands and examples to guide readers through the process of identifying the flags.

Assessment Methodologies: Information Gathering CTF 1 [eJPT]