🏆 Room Overview
| Field | Details |
|---|---|
| Platform | TryHackMe |
| Room | Basic Pentesting |
| Difficulty | Easy |
| Category | Linux, Enumeration, Privilege Escalation |
| Tools Used | Nmap, Gobuster, SSH |
🎯 Objectives
Brief summary of what the room asks you to do — 2 or 3 sentences is enough. What are you trying to achieve?
🔍 Reconnaissance
Nmap Scan
What did you scan for? Paste your command and summarise the key findings:
nmap -sV -sC -oN scan.txt <target-ip>
Key findings:
- Port X open — service name
- Port Y open — service name
🚶 Enumeration
Walk through what you investigated and why. What tools did you use? What did you find?
gobuster dir -u http://<target-ip> -w /usr/share/wordlists/...
Summarise findings — directories, files, usernames, anything notable.
⚔️ Exploitation
What vulnerability did you identify? How did you exploit it? Walk through your thought process, not just the commands.
# example command
💡 What I tried that didn’t work: This is optional but highly recommended — showing your reasoning process is exactly what employers want to see.
🔼 Privilege Escalation
How did you move from initial access to root/admin? What technique did you use and why?
# escalation command
🚩 Flags
| Flag | Value |
|---|---|
| User flag | THM{...} |
| Root flag | THM{...} |
📚 Lessons Learned
This is the most important section for your personal brand. Reflect on:
- What concepts did this room reinforce?
- What did you learn that was new?
- How does this relate to real-world penetration testing?
- What would you do differently next time?
🔗 References & Further Reading
- [Link to relevant tool documentation]
- [Link to relevant CVE or vulnerability explanation]
- [TryHackMe room link]