TryHackMe is a wonderful gamified platform. A very popular gamified platform. So popular, that there are write ups for each room almost as soon as they're published. If it's not a video walk through on youtube giving you all the answers, it's a write up on GitHub or on Medium.
I liked it as a game platform, it explained many topics and I gravitated mostly towards the pen testing rooms.
I liked it as a game platform, it explained many topics and I gravitated mostly towards the pen testing rooms.
See? Proof!
But the popularity is it's downfall as a test. These CTFs are an open book test in the first place, if for some reason you don't know how to use burpsuite for instance, but to have all of the writeups just readily available at your fingertips? Tragic. Hilariously, there was only one room that wasn't explicitly written out, step by step in how to solve it and that was the OSINT room.
We had to track usernames and conversations and decrypt base64 comments from site to site to track down the flag, and honestly it was the challenge I enjoyed the most. Who doesn't love a little cyber stalking and following the bread crumbs?
Unfortunately this entire CTF was a wash, because all of the answers (sans the one room above) were easily found on the web.
But the popularity is it's downfall as a test. These CTFs are an open book test in the first place, if for some reason you don't know how to use burpsuite for instance, but to have all of the writeups just readily available at your fingertips? Tragic. Hilariously, there was only one room that wasn't explicitly written out, step by step in how to solve it and that was the OSINT room.
We had to track usernames and conversations and decrypt base64 comments from site to site to track down the flag, and honestly it was the challenge I enjoyed the most. Who doesn't love a little cyber stalking and following the bread crumbs?
Unfortunately this entire CTF was a wash, because all of the answers (sans the one room above) were easily found on the web.