KING OF THE HILL - TryHackMe! Community Stream
If you would like to support me, please like, comment & subscribe, and check me out on Patreon: / johnhammond010
E-mail: johnhammond010@gmail.com
PayPal: paypal.me/johnhammond010
GitHub: github.com/JohnHammond
Site: www.johnhammond.org
Twitter: / _johnhammond
Пікірлер: 91
true hackers always forget their own IP address
@xmascrixus1874
Жыл бұрын
That is C A P
Hi John, nullr0ute here. Looking forward to the next koth :)
@enos5192
3 жыл бұрын
Lol Run up the Hill
@dannyv12
3 жыл бұрын
Go job dutch😎👍🏻
@idoabitoftrolling2172
3 жыл бұрын
Yeah i wish id been here when he was still doing these koths either way its very entertaining
@mahmoud-qk2pi
3 жыл бұрын
Goed gedaan 😉
@remy2885
3 жыл бұрын
Dutch are the best in cyber security thats for sure! congrats from Nijmegen @Nick B.
Great video man. Would love to see more of this style.
@_JohnHammond
4 жыл бұрын
Thanks so much! Hopefully I can do these each weekend! Thanks for watching!
This was so intense by the end lmao !!! Fuk!! wild very cool video as always !!
OMG First time I've watch this kind of video. Those TMUX skills are ace...... goes looking for the trayhackme tutorial!!
This is fun stuff. You have a DJ voice too!
@_JohnHammond
4 жыл бұрын
Aha, thank you! And thanks for watching!
The stream was awesome! First when john couldn't connect to koth box i was stressed as f*ck! More KOTH john!
@_JohnHammond
4 жыл бұрын
I was so upset over that stupid OpenVPN trouble. Totally my fault there. Guess I'll have to script it -- good lessons learned! Definitely will do more KoTH streams on the weekends!
This is crazy good. I enjoy watching KOTH videos to see the techniques people use. Any idea how they were within your shell and typing? That wasn’t a wall thing? Did they find your pid and then send it to that pid or something ?
@_JohnHammond
4 жыл бұрын
I think within the Tmux session, we were all in one session, so there was a lot of stomping over each other. Thanks for watching!
Really cool vid thanks John!
16:59 there is RFI in the include($_GET['page']); am i correct and why didn't you use it ?
@_JohnHammond
4 жыл бұрын
Oh SHOOT, good call! I was just thinking of LFI and totally forgot about RFI, that probably totally would work! Just have it call out to reach a PHP reverse shell you are hosting, and then have access through that :5555 service. In the moment that completely escaped me. I'll have to go try that! Thanks so much!
Would be nice to see a team vs team match, have a free for all king of the hill and the top 2 highest get to pick their teams, maybe even attackers vs defenders.
John Hammond sounds like Seth rogen and I love it
Great video, I really love it
Just started with TryHackMe and this is crazy to me xD
"Cmon I know that's a thing" John Hammond
Would it be possible to show us your keyboard shortcuts as to getting around the pc in an efficient way? Your workflow is smooth and would like to improve mine.
@kallikantzaros
4 жыл бұрын
that would be so helpful and valuable. he is ninja
Wow. I have been studying Linux for a month and watching this gave me a rush....
@lppio1997
2 жыл бұрын
hey would you care to update me on your progress! I just started november 1st with my studies and its very fun but overwhelming
i just got done with pre-security lol. I was wonderingg how KOTH is but John shows me what level of agility I must be with. I dont know how long it would take me to get to his level. Any idea how to start out with my first KOTH? I'm continuing on my Jr Pentest series on THM for now.
Amazing watching your speed
Nice Vİdeo Bro you best techniques and methods, I'm watching you with interest :)
that was awesome create video thanks
King of the hill games. Two files handling. Colour files open mexin.
I can't believe I missed it again... When the stream started my net just broke down to kbps speed, turns out my route died, so I have to get a new router... again.
@_JohnHammond
4 жыл бұрын
Ah dang, sorry to hear it! Well thank you for watching after-the-fact!
Haha gg! Why didn't your king count at the end? It only checks every 30 seconds or something? Super pressure at the end!
@_JohnHammond
4 жыл бұрын
I think it is every minute? Who knows. I REALLY wish it had counted at the end -- could have prevented the tie! Thanks so much for watching!
22:47 for what you put “id” at the and of command? it’s will be like first to run?
i love these koth videos
How was he able prompt commands on your shell
How someone was passing commands in your shell like someone typed "waddup"when you got your root shell and how can you prevent someone from messing with your shell and how they were messing with the flags ? It was my first time watching KoTH and i kinda enjoyed watching it xD.
@eldonad
3 жыл бұрын
Hey ! Not sure exactly how it's done, but I vaguely remember that all terminal sessions are available as "files" in /dev, and with the right permissions you can probably pipe data in them. Not tried it myself, but it's probably something like that.
How is he passing commands to stabilize his shells etc. from another terminal? I don't understand that?
@_JohnHammond
4 жыл бұрын
kzread.info/dash/bejne/mGaVtbqAkqeWfqg.html I use Guake to get quick terminal to run a script, and use `xte` to automate sending keystrokes, as if I am typing in to the remote target. It's a "poor man"s technique because it is not very elegant, but it does help move a bit faster! Thanks for watching!
@pranavbanerjee8625
4 жыл бұрын
@@_JohnHammond Thanks dude.
You have the easy to explaining in
please be my dad
@DDBAA24
4 жыл бұрын
🏆 Best KZread comment so far for 2020
@_JohnHammond
4 жыл бұрын
I could... virtually... adopt you? ????
discord.gg/zkWuDn - follow our discord!
Hi I’m new and I like you Videos.
38:31 how hacker been hacked during hacking
@MiguelDevOps
Жыл бұрын
😂😂
What did you do at 10:20 right before the connection was working? You killed the OpenVPN process, removed tun0, and then? Might come in handy in the future for us
@_JohnHammond
4 жыл бұрын
I apparently had another process that was running in the background, but it was stuck in the sudo prompt, so I never saw it. Thanks so much for watching!
I did not understand the part where, ssh was found but not showing on nmap?
@_JohnHammond
4 жыл бұрын
SSH was listening on port 1337, which is a non-standard port for SSH. The initial nmap scan didn't return it since it was an odd port, and the all_ports nmap scan seemingly never finished (since that initial box got reverted). I should have just made the all_ports scan verbose, but, ah well -- lessons learned for next time! Thanks for watching!
@kunal9999100
4 жыл бұрын
@@_JohnHammond Thank you soo much
Couldn't you read the upload/index.php to reverse the hash?
@_JohnHammond
4 жыл бұрын
Ooooh, maybe, once we had initial access we could definitely try and read the source to figure that out. I'll have to go try it! Thanks so much!
If I win do I get propane and propane accessories?
@_JohnHammond
4 жыл бұрын
You get the glory!
Good game.
Exit full
49:20 the files look like they contain the unix timestamp as the second portion of the random file name. Couldn't you have used that to identify your file?
@kalelsoffspring
4 жыл бұрын
Also if you had a shell, you could just list the timestamps for each file and grab the latest one
@TunaNSweetcorn
4 жыл бұрын
Could you check filehash?
This one game name?
Lets count all the terminals 1...2..3..4..5..6..7..8..9..10..11..12..13 true hackers use 14 terminals smh.
Echo copy=pint How much time 3
06:37 you're a state secret
Not to try to school the teacher, but if you throw at least OBS in another workspace it'll clean up your alt tabbing a bit. I'm moving over to managing workspaces as opposed to just playing side-monitor shuffle.
@EndisuKKJJ
2 жыл бұрын
` - `
:D
4files open . File name
seth rogan hacker
unbelievable how many advertisements is in your video :(
@_JohnHammond
4 жыл бұрын
I'm sorry for my free content! :(
@PR1NC3
2 жыл бұрын
@@_JohnHammond vanced noises
Super weird. Lol. Just did a box on HackTheBox with nostromo and then this video got recommended to me by KZread. Thanks guys.
This file opening 🪟 window?