█
LastWrite
  • > Curriculum
  • > Pricing
  • > For Educators
  • > About
  • > Contact
Log InGet Started

Questions, concerns, bug reports, or suggestions? We read every message, write to us at [email protected].

More ways to reach us →
LastWrite

Structured computer science lessons for aspiring developers and security professionals.

[email protected]

(201) 785-7951

Mon–Fri, 9 AM–5 PM EST

Learn

  • Curriculum
  • Pricing

Company

  • About
  • For Educators & Schools
  • Contact Us

Legal

  • Terms of Service
  • Privacy Policy
© 2026 LastWrite. All rights reserved.
Curriculum/Cybersecurity/Penetration Testing/Advanced Tools and CTF Practice
60 minAdvanced

Advanced Tools and CTF Practice

After this lesson, you will be able to: Use Wireshark + Nmap NSE and complete a full CTF machine end-to-end.

This lesson is hands-on: complete a HackTheBox easy/medium machine from recon to root, narrating every decision. Plus Wireshark for protocol-level investigation and Nmap NSE for advanced scripting.

Prerequisites:Post-Exploitation and Reporting

Wireshark in 5 minutes

Capture filters (`tcp port 80`) reduce noise. Display filters (`http.request.method == POST`) find specific events. Follow TCP Stream re-assembles a full conversation. Saving captures: .pcap.

Nmap NSE essentials

Nmap Scripting Engine extends Nmap with vuln checks:

tsx
# Vulnerability scripts
nmap --script vuln 10.10.10.10
# Specific service
nmap -sV --script smb-vuln* 10.10.10.10
# Default + safe scripts
nmap -sC -sV 10.10.10.10

💡 Live: a full CTF

Pick a HackTheBox 'easy' retired box. Walk: recon → enum → exploit → priv-esc → root → write up. Block 90 minutes.

Mental model for a CTF machine

  1. 1

    1. Don't rabbit-hole, if a path is dry after 30 min, switch.

  2. 2

    2. Enumerate ALL services before exploiting any.

  3. 3

    3. Every found credential gets reused everywhere.

  4. 4

    4. Write notes as you go (CherryTree, Obsidian).

  5. 5

    5. Stuck? Use the room's 'official walkthrough' AS LAST RESORT.

Sign in and purchase access to unlock this lesson.

Sign in to purchase
←Post-Exploitation and Reporting
Back to Penetration Testing
Penetration Testing Resources and Next Steps→