advent-of-cyber-2025
Room Link: https://tryhackme.com/room/linuxcli-aoc2025-o1fpqkvxti
▶️ Ryan Montgomery – Day 1 Video Walkthrough
We are providing the official Day 1 walkthrough video for quick onboarding:
🔗 YouTube Link: https://youtu.be/enOqvR0-1O4?si=ICiOoy59nfKVHCki
🐧 Advent of Cyber — Day 1 Write-Up
Question 1 — Which CLI command lists the contents of a directory?
When you enter McSkidy’s home directory, the first step is checking what’s available.
Answer:
ls
ls
Question 2 — What flag was hidden inside McSkidy’s guide?
Navigate into the Guides directory:
cd GuidesThe folder looks empty until you reveal hidden files:
ls -laWhich exposes .guide.txt
cat .guide.txt
Answer:
THM{learning-linux-cli}
THM{learning-linux-cli}Question 3 — Which command filtered failed login attempts?
cd /var/loggrep "Failed password" auth.log
Answer:
grep
grepQuestion 4 — What flag was inside the Eggstrike script?
Search the socmas directory:
find /home/socmas -name "*egg*"
Answer:
THM{sir-carrotbane-attacks}
THM{sir-carrotbane-attacks}Question 5 — Which command switches to the root user?
Answer:
sudo su
sudo suQuestion 6 — What flag was found in root’s bash history?
cd /rootcat .bash_history
Answer:
THM{until-we-meet-again}
THM{until-we-meet-again}