CTF-Writeups/TryHackMe/Throwback/THROWBACK-CORP-DC01.md

TryHackMe-THROWBACK-CORP-01(10.200.34.118)

We can login with MercerH's credentials as this domain is trusted by THROWBACK.LOCAL but in order to do we need to run autoroute on DC because we cannot reach CORP domain through PROD

Here I downloaded meterpreter backdoor

Now we have to remove route from previous sessions which in my case is 6 so I will use autoroute and SET CMD delelte, SET SESSION 6 and then run it. After that I will SET CMD autoadd , SET SESSION 7 and run the module

Add both the domain names in /etc/hosts file