Advent of Cyber 2025: Day 4 Writeup AI-AI-AI | TryHackMe

Source: Dev.to

Introduction

Look for the summary picture to know what to start each day. No special tools are required today except for Python. If you already have OpenVPN set up, you can skip launching the AttackBox (which has a 1‑hour daily limit) and go straight to the Target Machine.

Accessing Van SolveIT

Open Firefox and navigate to the Van SolveIT instance:

http://10.49.141.x4x

You must access it either from the AttackBox or from your own device connected to the VPN.

Stage 1 – Chat with the AI

1. Interact with the AI chatbot.
2. Click “Complete Stage to Continue” to obtain the first flag.

Stage 2 – Act as an Attacker (Red Team)

1. From the TryHackMe room, copy the Target Machine IP into the Python script where MACHINE_IP is highlighted.

2. Save the file.

   

3. Run the script:

   python3 file.py

4. The script will return a response containing the second flag. Paste this flag into the appropriate field on TryHackMe.

5. Click Complete.

   

Stage 3 – Act as a Defender (Blue Team)

The chatbot guides you on what to ask:

“Let’s solve this stage together. You can ask me to analyse an example set of logs for the attack that we just performed!”

1. Ask the chatbot to analyze the logs.
2. Wait a moment for the response.
3. The reply reveals that the vulnerable file is login.php.
4. Click Complete.

Stage 4 – Final Stage

1. Type yes and wait for the reply.
2. Read the information on how to secure login.php.
3. Click Complete Showcase to finish the last stage and obtain the final flag.

---

The End.
Even easy rooms can be stressful!