HeartBleed TryHackme Walkthrough

By Shamsher khan This is a Writeup of Tryhackme room “HeartBleed”

https://tryhackme.com/room/heartbleed

Room link: https://tryhackme.com/room/heartbleed
Note: This room is for Premium Members Only. who purchased THM premium membership.

Description:

​ SSL issues are still lurking in the wild. Can you exploit this web servers OpenSSL?

Related Hosting Links

Once the machine is deployed, let’s go ahead and scan it with nmap

nmap -sV --script vuln 52.209.186.169

The namp scan shows us that there is ssl-heartbleed Vulnerability here

Let’s Try to find module in metasploit

service postgresql start

Looks like there is! Let’s go ahead and select it for use and check what options we have to set

Just need to set RHOST (Remote host) and verbose, let’s go ahead and set those!

You can find me on:
LinkedIn:- https://www.linkedin.com/in/shamsher-khan-651a35162/
Twitter:- https://twitter.com/shamsherkhannn
Tryhackme:- https://tryhackme.com/p/Shamsher

For more walkthroughs stay tuned…
Before you go…

Visit my other walkthrough’s:-

and thank you for taking the time to read my walkthrough.
If you found it helpful, please hit the 👏 button 👏 (up to 40x) and share
it to help others with similar interests! + Feedback is always welcome!

Web Application Pen-tester || CTF Player || Security Analyst || Freelance Cyber Security Trainer

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store