Watcher | TryHackMe Walkthrough
Tags
| attack-pattern: | Credentials - T1589.001 Cron - T1053.003 Server - T1583.004 Server - T1584.004 Ssh - T1021.004 Sudo - T1169 |
Common Information
| Type | Value |
|---|---|
| UUID | 8d5b2495-0b88-458a-b046-9241418bb4c9 |
| Fingerprint | 13a35a0805851707 |
| Analysis status | DONE |
| Considered CTI value | -2 |
| Text language | |
| Published | Feb. 20, 2023, 3:51 a.m. |
| Added to db | Feb. 20, 2023, 5:52 a.m. |
| Last updated | Nov. 18, 2024, 2:36 a.m. |
| Headline | Watcher | TryHackMe Walkthrough |
| Title | Watcher | TryHackMe Walkthrough |
| Detected Hints/Tags/Attributes | 37/1/17 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | cow.sh |
|
| Details | Domain | 2 | cmd.py |
|
| Details | File | 75 | 3-medium.txt |
|
| Details | File | 259 | robots.txt |
|
| Details | File | 1 | flag_1.txt |
|
| Details | File | 2 | secret_file_do_not_read.txt |
|
| Details | File | 59 | post.php |
|
| Details | File | 1 | striped.php |
|
| Details | File | 71 | shell.php |
|
| Details | File | 28 | note.txt |
|
| Details | File | 2 | cmd.py |
|
| Details | File | 2 | will_script.py |
|
| Details | IPv4 | 1 | 10.10.211.47 |
|
| Details | IPv4 | 1 | 10.2.12.26 |
|
| Details | Url | 1 | http://10.10.211.47/post.php?post=striped.php |
|
| Details | Url | 1 | http://10.10.211.47/post.php?post= |
|
| Details | Url | 1 | http://10.10.211.47/post.php?post=../../../var/www/html/secret_file_do_not_read.txt |