Operation Coldstart TryHackMe CTF Walkthrough

📰 Medium · Cybersecurity

Learn to solve the Operation Coldstart CTF challenge on TryHackMe by following a step-by-step walkthrough, improving your network reconnaissance and vulnerability exploitation skills.

intermediate Published 20 Jun 2026
Action Steps
  1. Update your local DNS to access the staging server using the command 'echo 10.48.175.56 coldstart.thm >> /etc/hosts'
  2. Run an Nmap scan to discover open ports and services using 'nmap -sS -sC -sV -p- coldstart.thm'
  3. Analyze the scan results to identify potential vulnerabilities
  4. Exploit the identified vulnerabilities to gain access to the system
  5. Use the gained access to explore the system and find flags or complete the challenge objectives
Who Needs to Know This

This walkthrough is beneficial for cybersecurity teams, particularly those involved in penetration testing and vulnerability assessment, as it provides hands-on experience with network reconnaissance and exploitation techniques.

Key Insight

💡 Network reconnaissance and vulnerability exploitation are crucial skills for cybersecurity professionals, and this walkthrough provides practical experience with these techniques.

Share This
Solve the Operation Coldstart CTF challenge on TryHackMe with this step-by-step walkthrough #CTF #TryHackMe #Cybersecurity

Full Article

Title: Operation Coldstart TryHackMe CTF Walkthrough

URL Source: https://medium.com/@C09N1T1V3/operation-coldstart-tryhackme-ctf-walkthrough-7f6290fc1b80?source=rss------cybersecurity-5

Published Time: 2026-06-20T08:38:23Z

Markdown Content:
[Sitemap](https://medium.com/sitemap/sitemap.xml)

[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)

Sign up

[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40C09N1T1V3%2Foperation-coldstart-tryhackme-ctf-walkthrough-7f6290fc1b80&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)

[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)

Get app

[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)

[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)

Sign up

[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40C09N1T1V3%2Foperation-coldstart-tryhackme-ctf-walkthrough-7f6290fc1b80&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)

![Image 1: C09N1T1V3](https://miro.medium.com/v2/resize:fill:32:32/1*dmbNkD5D-u45r44go_cf0g.png)

# Operation Coldstart TryHackMe CTF Walkthrough

[![Image 2: C09N1T1V3](https://miro.medium.com/v2/resize:fill:32:32/1*dmbNkD5D-u45r44go_cf0g.png)](https://medium.com/@C09N1T1V3?source=post_page---byline--7f6290fc1b80---------------------------------------)

[C09N1T1V3](https://medium.com/@C09N1T1V3?source=post_page---byline--7f6290fc1b80---------------------------------------)

Follow

3 min read

·

Jun 20, 2026

[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2F7f6290fc1b80&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40C09N1T1V3%2Foperation-coldstart-tryhackme-ctf-walkthrough-7f6290fc1b80&user=C09N1T1V3&userId=dfaff30a09b1&source=---header_actions--7f6290fc1b80---------------------clap_footer------------------)

[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Frepost%2Fp%2F7f6290fc1b80&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40C09N1T1V3%2Foperation-coldstart-tryhackme-ctf-walkthrough-7f6290fc1b80&user=C09N1T1V3&userId=dfaff30a09b1&source=---header_actions--7f6290fc1b80---------------------repost_header------------------)

[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2F7f6290fc1b80&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40C09N1T1V3%2Foperation-coldstart-tryhackme-ctf-walkthrough-7f6290fc1b80&source=---header_actions--7f6290fc1b80---------------------bookmark_footer------------------)

[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3D7f6290fc1b80&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40C09N1T1V3%2Foperation-coldstart-tryhackme-ctf-walkthrough-7f6290fc1b80&source=---header_actions--7f6290fc1b80---------------------post_audio_button------------------)

Share

Wake up the staging server everyone left behind.

![Image 3](https://miro.medium.com/v2/resize:fit:412/1*9y0T72LDpZSXAux7uZpWMw.png)

To interact with it, first updated my local DNS:

echo "10.48.175.56 coldstart.thm" >> /etc/hosts

Press enter or click to view image in full size

![Image 4](https://miro.medium.com/v2/resize:fit:700/1*xbUeHIgxd4hQbqCUyv62Nw.png)

## Step 1: Network Reconnaissance

With the server accessible, ran an **Nmap scan** to discover open ports and services:

nmap -sS -sC -sV -p- coldstart.thm
* `-sS`: Stealth SYN scan
* `-sC`: Default scripts
* `-sV`: Service version detection
* `-p-`: Scan all 65,535 ports

P
Read full article → ← Back to Reads

Related Videos

NordVPN Vs ExpressVPN 2026 | Which VPN Should You Choose?
NordVPN Vs ExpressVPN 2026 | Which VPN Should You Choose?
Tutorial Stack
NordVPN Vs Surfshark 2026 | Which VPN Should You Choose?
NordVPN Vs Surfshark 2026 | Which VPN Should You Choose?
Tutorial Stack
Secure Your WordPress Website 2026 | Solid Security Basic & Pro Tutorial
Secure Your WordPress Website 2026 | Solid Security Basic & Pro Tutorial
Matt Tutorials
DPDPA India for CISOs – A pragmatic approach to essentials vs. hearsay
DPDPA India for CISOs – A pragmatic approach to essentials vs. hearsay
AKITRA
BYC Ventures’ partnership with cybersecurity company CeQureX is intended to provide dedicated specia
BYC Ventures’ partnership with cybersecurity company CeQureX is intended to provide dedicated specia
BitPinas - Crypto News Philippines
Surfshark Review — The Honest Pros, Cons and Final Verdict (2026)
Surfshark Review — The Honest Pros, Cons and Final Verdict (2026)
Tutorial Stack