Room Banner

Industrial Intrusion

Industrial Intrusion CTF

medium

1337 min

Team room

Room progress ( 0% )

To access material, start machines and answer questions login.

Task 1Intro and Rules

A banner image spelling out the words Industrial Intrusion.

Three months after the infamous malware attack on the Virelia Water Control Facility, the plant resumed operations under "full remediation." But something is off. Operators report flickering sensors, inconsistent valve pressures, and automated alerts that can't be traced to any active process. A deeper dive reveals a chilling truth — the attacker left behind a persistence mechanism: A covert second-stage implant that re-established control through overlooked OT backdoors and a compromised web portal.

You are a hired red team specialist working for the Black Echo company. Your mission: Infiltrate the infected systems before the attacker activates their kill-switch. The catch? The adversary is still there. Watching. Reacting. Fighting back.

Join an action-packed Capture The Flag event where you'll team up to solve thrilling puzzles, uncover secrets, and dive into an exciting storyline! 

What is a CTF?

A Capture The Flag event is a competition where you and your team will have to solve cyber security challenges in diverse areas of knowledge. The challenges are completely practical and will allow you to put your skills to the test. Each challenge has one or more flags you'll need to retrieve to score points.

A flag is a string of text hidden in each challenge that will serve as proof that you've achieved the expected goal. Flags for this competition will follow the following format:

THM{some_text_here}

Who Can Join?

Anyone! This CTF has no limits for participants.
However, we will have 2 sets of prizes and 2 separate leaderboards: One for student teams and one for everyone.

Where Are the Challenges?

The competition will run from June 27th at 14:00 (BST) until June 29th at 23:59 (BST). The challenges will be made available in this room when the competition starts.

While you wait for the competition, feel free to try the challenges from our catalogue to practice! 

Read the Rules of the CTF! 

We'd love to say that everything is permitted during your search to stop the attacker, but just you can't go berserk here. Remember, you're a red team specialist, and destroying any of the factory's infrastructure or affecting day to day operations won't be allowed.

This means:

  1. Do not attack TryHackMe's infrastructure.
  2. Do not attack other users' machines; only use your IP and/or the target machines' IP.
  3. Don't share flags with other teams.
  4. Don't ask for hints during the event.
  5. Do not brute force flags on the TryHackMe platform.
  6. The maximum team size is 5.

If you have questions or need support from the Factory Operators (THM support), please join our Discord channel and open a ticket. The full Terms and Conditions of the competition can be read here.

Answer the questions below

I have read the rules and joined the Discord server.

Join the Fray 

Before the CTF starts, you must create a TryHackMe account if you don’t have one. Head over to https://tryhackme.com/signup. You will need to go through the full onboarding, but don’t worry - it takes less than a couple of minutes!

Create a Team

To participate in Industrial Intrusion, you'll need to join a team of up to 5 people. You can create a team from your account management page. Click on the “Teams tab” and then “Create a team”.

Image showing where the Create a team button is.

Once you have created your team, you can share the invitation link with your teammates:

An image showing where the members invite link is located.

Why is This Important? 

You can only get points on the scoreboard if you are part of a team. Even if you want to participate as a single user, you must still create a team. We recommend creating your team as soon as possible to avoid losing time during the event.

This event will have 2 separate leaderboards: one for student teams and one for non-student participants.
In order for your team to be eligible for the student leaderboard, it must be comprised 100% of students. To verify your student status, please follow the instructions in this article.

Answer the questions below

I'm now part of a team.

Set up your virtual environment

To successfully complete this room, you'll need to set up your virtual environment. This involves starting both your AttackBox (if you're not using your VPN) and Target Machines, ensuring you're equipped with the necessary tools and access to tackle the challenges ahead.
Attacker machineMachine info
Status:Off
Target machineMachine info
Status:Off
 
EASY
#1
 
 
 
 
0 Points

OT

 
This engagement aims to find a way to open the gate by bypassing the badge authentication system.
The control infrastructure may hold a weakness: Dig in, explore, and see if you have what it takes to exploit it.
Be sure to check all the open ports, you never know which one might be your way in!
 
 
 
 
Answer the questions below

What is the flag?

From all of the TryHackMe team, a massive thank you for participating in this CTF! We hope you enjoyed the challenges and had a great time solving them. It was a pleasure having you all on board!

We would really appreciate it if you could provide us with your honest feedback for the event by filling out this form. Let us know what we did well or what needs to be improved; we want to hear it all. 

We hope to see you at our future events!

~ TryHackMe

Answer the questions below

What's the flag at the end of the feedback form?

Created by

User avatar
tryhackme
User avatar
ar33zy
User avatar
hadrian3689
User avatar
DrGonz0
User avatar
h4sh3m00
User avatar
rePl4stic

Room Type

Free Room. Anyone can deploy virtual machines in the room (without being subscribed)!

Users in Room

20,185

Created

44 days ago

Ready to learn Cyber Security? Create your free account today!

TryHackMe provides free online cyber security training to secure jobs & upskill through a fun, interactive learning environment.

Already have an account? Log in