Today we’re covering TryHackMe’s second room in their Scripting For Pentesters series, Python for Pentesters. In this room, we’ll be doing hands-on learning about the scripting programming language Python. Although programming isn’t required to succeed in security (or IT in general), it’s a solid skill to have in your arsenal. The purpose of the “Scripting for Pentesters” module is to show that being able to program allows you to create security tools and write quick scripts that will help aid in offensive security (as well as defending and analyzing). As a reminder, only use these scripts for learning on equipment that you have permission to run these scripts against.
In this room we’ll cover how to: Enumerate subdomains/directories, build a simple keylogger, build an ARP scanner, build a port scanner, crack hashes, brute force ssh logins and more!!!
Below I’m going to share with you my answers when going through the knowledge checks in the different tasks in the room. Definitely try to work through the problems as much as you can. Make sure to follow along in the video so you understand what you need to do to get the answers below. This particular room, the questions require you to do some type of coding in a code editor or within a text editor like nano.
Python For Pentesters Task 1 – Introduction
Python For Pentesters Task 2 – Subdomain Enumeration
Python For Pentesters Task 3 – Directory Enumeration
Python For Pentesters Task 4 – Network Scanner
Python For Pentesters Task 5 – Port Scanner
Python For Pentesters Task 6 – File Downloader
Python For Pentesters Task 7 – Hash Cracker
Python For Pentesters Task 8 – Keyloggers
Python For Pentesters Task 9 – SSH Brute Forcing
Network Knowledge Wrap Up
Keep an eye out as I continue to work through other TryHackMe rooms!
Here is the CompTIA Pentest+ training book bundle I used to pass my PenTest+. (Affiliate Link)
TryHackMe Python For Pentester’s room