TryHackMe|Bolt WriteUp\Walkthrough (English)

By Asmaa Alghamdi June 07, 2024

Bolt

Room Link: https://tryhackme.com/r/room/bolt

=============================================================

What Is a Content Management System (CMS)?

A content management system (CMS) is software that helps users create, manage, and modify content on a website without the need for technical knowledge. In other words, a CMS lets you build a website without needing to write code from scratch (or even know how to code at all).

sudo nmap IP. We have 3 ports open 22,80,8000. CMS is running on port 8000 (hence Bolt).
The username and password for the user are in the messages on the home page on port 8000.
To know the version, log into Bolt IP:8000/bolt/login with the credentials you obtained in step 2. In the bottom left corner, you will find the version.
To know the exploit DB # and the MSF module name, simply search bolt rce exploit db. The search results will show exploit DB (to get the ID) and Rapid 7 results (module name).
Run the exploit. You will get a shell. /bin/bash -i then find / -name “flag.txt”. Retrieve the flag from /home/flag.txt ✨.

Asmaa's CyberSecurity Place 👩🏻‍💻🔒

Search 🔎🖥️

TryHackMe|Bolt WriteUp\Walkthrough (English)

Bolt

Comments

Post a Comment

Popular posts from this blog

TryHackMe|Blog WriteUp\Walkthrough (Arabic)

eJPTv2 Exam Review (Arabic)

TryHackMe|Blueprint WriteUp\Walkthrough (Arabic)