![[THM] Gallery, Writeup](https://miro.medium.com/v2/resize:fit:708/1*Q3DMhsqVeDDtXVrVjB1wVg.png "[THM] Gallery, Writeup")
This article details a cybersecurity penetration testing journey on a web application hosted on TryHackMe, highlighting methods such as port scanning, web enumeration, SQL injection, and privilege escalation. It emphasizes the importance of thorough reconnaissance, exploiting vulnerabilities like SQLi, and leveraging backup files for system access. #TryHackMe #SQLInjection
Keypoints
- Initial reconnaissance involved port scanning to identify active services and open ports.
- Web application enumeration revealed a vulnerable image gallery susceptible to SQL injection.
- SQLi vulnerability enabled database dumping, exposing user data and system files.
- Backups and hidden files served as key sources for sensitive information and privilege escalation.
- Exploiting sudo permissions and utilizing GTFOBins facilitated privilege escalation to root.
Read More: https://infosecwriteups.com/thm-gallery-writeup-3a5d7d607646?source=rss—-7b722bfd1b8d—4