TryHackMe Heist | Smart Contract Hacked! Full Walkthrough (Hackfinity CTF)

TryHackMe: Heist - Smart Contract changeOwnership & withdraw Exploit From the Hackfinity Battle CTF event. Welcome, ethical hackers! 🕵️‍♂️ In this video, we're diving deep into the "Heist" room from TryHackMe, originally featured in the Hackfinity Battle CTF event. The mission: A critical weakness has been found in Cipher's Smart Contract. If exploited, we can drain its entire ETH treasury! This isn't just about the loot; successfully emptying the contract will cut off funding to the notorious Phantom Node Botnet, disabling its global malicious operations. 💥 Join me as I walk through the steps to: 1️⃣ Analyze the vulnerable Solidity smart contract. 2️⃣ Exploit the `changeOwnership()` vulnerability to gain control. 3️⃣ Utilize the `withdraw()` function to drain all Ether from the contract. 4️⃣ Confirm the solution by checking `isSolved()` and effectively defunding the botnet! This walkthrough is perfect for anyone interested in smart contract security, blockchain CTFs, or learning how to tackle common Solidity vulnerabilities. We'll be using tools like `cast` from Foundry to interact with the contract on the blockchain. 🔗 TryHackMe Room Link: https://tryhackme.com/room/hfb1heist Can we stop the Phantom Node Botnet? Let's find out! ✅ Subscribe for more TryHackMe walkthroughs, forensic deep dives, and cyber-security labs! 👍 Like if you learned something new, and leave a comment with your favorite Android artifact 👍 these tutorials are for educational purposes and to encourage responsible and legal use of hacking knowledge. #TryHackMe #Heist #SmartContract #CTF #HackfinityCTF #BlockchainSecurity #Solidity #EthicalHacking #Cybersecurity #PhantomNode