MR. Robot Walkthrough

MR. Robot is a vulnerable machine which is available on tryhackme and it is based on a linux machine and it this machine is inspired by the famous web series Mr. Robot.

So let’s start with our very first step,

We will get the ip address and then we will run the Nmap scan.

As we can see port 80 is open, and a webpage is running:

We can do directory fuzzing with the tool using ffuf.

Result of ffuf:

Here we got many directories but the most interesting are robots and wp-login.

Let’s check robot directory first.

Here we got this, these are also directories,

Let’s get both of them:

So the fsocity seems like a dictionary file and key is the flag.

We got our first flag:

Fsocity.dic file is containing passwords, we saw another directory named as wp-login.

Let’s see what’s there.