TryHackMe: Advent of Cyber 3

Merry Christmas and Happy Holidays! We made it. We helped elf McSkidy undo the Grinch's malicious activities. 

 

 THE STORY: 

 


 

I am so happy I could participate in this year's Advent of Cyber as it was happening. I joined TryHackMe this year at the beginning of January. TryHackMe gave me a jump start on some of the material I was about to learn in class. Since joining, I have made it to the top 1% of users on the site. I still have a long way to go and so much more to learn. I am constantly recommending this site to my peers. 

 

Other than a couple of days during finals week, I was able to keep on track with the daily challenges. My favorite challenges were the Blue Teaming challenges on Days 19 through Day 23. These challenges involved investigating a phishing attempt, identifying file types, finding strings, calculating hashes, and using Virus total to perform a preliminary analysis of a suspicious file. We also created Yara rules and analyzed Windows event logs to recover key artifacts in web communications. 

 

OSINT (open-source intelligence) was another favorite of mine. I have experience with OSINT because of what I do for my current job. However, OSINT is a topic I would like to explore more. I know there are several tools out there that I haven't touched.

 

The most challenging day for me was Day 6 - Patch Management is Hard. I knew this day would be hard for me because I had completed a room about a month ago that involved a Local File Inclusion (LFI) vulnerability, and it was also difficult for me. LFI can lead to denial of service, remote code execution, and sensitive information disclosure.

 

I had a lot of fun completing these challenges and I look forward to Advent of Cyber 4!