Lian_Yu — TryHackMe Walkthrough Introduction In this walkthrough, I tackle the Lian_Yu room, moving from initial enumeration to full root access by chaining web discovery, credential extraction …

InfoSecWriteUps' platform is  dedicated to providing insights and resources for cybersecurity professionals and enthusiasts. Through articles, tutorials, and security research, InfoSecWriteUps offers insights into cybersecurity vulnerabilities, attack techniques, and defense strategies. Readers can learn about penetration testing, threat intelligence, and incident response to enhance their cybersecurity knowledge and skills.

InfoSec Write-ups

A step-by-step walkthrough of the Lian_Yu beginner CTF room on TryHackMe. The process covers Nmap scanning to identify open services, directory brute-forcing with dirsearch to find hidden web paths, extracting Base58-encoded FTP credentials from a .ticket file, downloading and analyzing image files via steganography (steghide) and hex editing to recover SSH credentials, and finally escalating to root using pkexec via GTFOBins.