Takeover CTF

Step one we are going to add the host to our hosts file

We can do this using nano /etc/nano fill in IP address and the host site which is FutureVera.

This will allow us to visit the site then we want to run an nmap scan to start emulation process.

Step two we want to fuzz the subdomains

We will want to use ffuf we get two subdomains and add them to our /etc/host file so we can visit the subdomains and do some more investigation.

Sadly this does not give us any more information.

We will want to use ffuf we get two subdomains and add them to our /etc/host file so we can visit the subdomains and do some more investigation.

Sadly this does not give us any more information.

Next we want to add the support.futurevera.thm to the host file this is where we can view the site certification and get a little more information.

Step 3 is adding the alias to the host file and visit the new site

visit secretthehelpdesk934752.support.futurevera.thm

we then get the following flag:

flag{beea0d6edfcee06a59b83fb50ae81b2f}