Embedded Files
Figure 1
Demonstration of Tigexp command on the Try Hack Me Intrusion Detection System Room
Writeup
Writeup
At the very bottom of the page is a link to the Intrusion Detection System room on Try-Hack-Me. When you click on the link, you will be brought into the room containing a demonstration of the Tiger IDS.
Task 1, located in the Try Hack Me room, outlines the steps that are necessary in order to start and log into the VM. Additionally, task 1 explains how to gain root access to the VM and use Tiger in order to generate a list of vulnerabilities.
A number of vulnerabilities exist on the VM. One of them is a file system permission error caused by /bin/su setupid as `root`. More information on Perm023a can be displayed by typing Tigexp Perm023a at the command prompt. The description in Figure 1 below describes what actions can be performed in order to resolve this vulnerability. Once I run chmod u-s /bin/su and run Tiger again, the permission error goes away.
Page updated
Google Sites
Report abuse