TryHackMe | Holo

To access material, start machines and answer questions login.

Press 'Start' to begin

Welcome to Holo!

Holo is an Active Directory and Web Application attack lab that teaches core web attack vectors and advanced\obscure Active Directory attacks along with general red teaming methodology and concepts.

In this lab, you will learn and explore the following topics:

.NET basics
Web application exploitation
evasion
Whitelist and escapes
Pivoting
Operating with a (Command and Control) Framework
Post-Exploitation
Situational Awareness
Active Directory attacks

You will learn and exploit the following attacks and misconfigurations:

Misconfigured sub-domains
Local file Inclusion
Remote code execution
Docker containers
SUID binaries
Password resets
Client-side filters
Vulnerable DLLs
Net-NTLMv2 /

This network simulates an external penetration test on a corporate network "Hololive" with one intended kill chain. All concepts and exploits will be taught in a red teaming methodology and mindset with other methods and techniques taught throughout the network.

This network brings you from zero to red-team, but you are expected to have a general understanding of basic Windows and architecture and the command line for both Windows and . If you need help, please feel free to ask in the TryHackMe Discord; there is a channel set up for this purpose in the help section there.

Answer the questions below

Read the above and prepare to hack all the things.

Ready to learn Cyber Security?

The Holo room is only available for premium users. Signup now to access more than 500 free rooms and learn cyber security through a fun, interactive learning environment.

Already have an account? Log in

Holo

Press 'Start' to begin

Task 1Intro Generation One

Task 2Intro Patching into the MatrixPremium

Task 3Intro Kill ChainPremium

Task 4Flag Submission Flag Submission PanelPremium

Task 5Competition Pwning & PrizesPremium

Task 6.NET Basics CLR - Commonly Lacking RadiationPremium

Task 7.NET Basics Rage Against the CompilerPremium

Task 8Initial Recon NOT EVERY GEEK WITH A COMMODORE 64 CAN HACK INTO NASA!Premium

Task 9Web App Exploitation Punk Rock 101 err Web App 101Premium

Task 10Web App Exploitation What the Fuzz?Premium

Task 11Web App Exploitation LEEROY JENKINS!Premium

Task 12Web App Exploitation What is this? Vulnversity?Premium

Task 13Web App Exploitation Remote Control Empanadas Premium

Task 14Post Exploitation Meterpreter session 1 closed. Reason: RUH ROH Premium

Task 15Situational Awareness Docker? I hardly even know her!Premium

Task 16Situational Awareness Living off the LANdPremium

Task 17Situational Awareness Dorkus Storkus - Protector of the DatabasePremium

Task 18Docker Breakout Making Thin Lizzy ProudPremium

Task 19Docker Breakout Going%20out%20with%20a%20SHEBANG%21Premium

Task 20Privilege Escalation Call me Mario, because I got all the bitsPremium

Task 21Post Exploitation From the ShadowsPremium

Task 22Post Exploitation Crack all the ThingsPremium

Task 23Pivoting Digging a tunnel to nowherePremium

Task 24Command and Control Command your Foes and Control your FriendsPremium

Task 25Command and Control Bug on the WirePremium

Task 26Command and Control The Blood OathPremium

Task 27Command and Control We ran out of Halo and YAML references...Premium

Task 28Web App Exploitation Hide yo' Kids, Hide yo' Wives, Hide yo' TokensPremium

Task 29Web App Exploitation Thanks, I'll let myself in.Premium

Task 30AV Evasion Basically a joke itself....Premium

Task 31AV Evasion THEY WONT SEE ME IF I YELL!Premium

Task 32AV Evasion AMSIceptionPremium

Task 33AV Evasion JU57 0BFU$C47E 1TPremium

Task 34AV Evasion 'Ca' + 'n' + 'you' + ' ' + 'see' + 'me now' + '?'Premium

Task 35AV Evasion Wrapping the burritoPremium

Task 36Post Exploitation That's not a cat that's a dawgPremium

Task 37Post Exploitation Good Intentions, Courtesy of Microsoft: Part IIPremium

Task 38Post Exploitation Watson left her locker openPremium

Task 39Situational Awareness So it's just fancy malware?Premium

Task 40Situational Awareness SEATBELT CHECK!Premium

Task 41Situational Awareness ALL THE POWER!Premium

Task 42Situational Awareness Import-Module PowerUpGreySkull.ps1Premium

Task 43Privilege Escalation WERE TAKING OVER THIS DLL!Premium

Task 44Persistence WERE TAKING OVER THIS DLL! Part: IIPremium

Task 45NTLM Relay Never trust the LanManPremium

Task 46NTLM Relay Now you see me, now you don'tPremium

Task 47NTLM Relay Why not just turn it off?Premium

Task 48NTLM Relay Ready your weaponsPremium

Task 49Conclusion End GamePremium

Ready to learn Cyber Security?