In this video we go through the steps of performing an NMAP scan to discover the open ports and associated services . We then discover an IDOR on the page hosted on port 80, which gives us a network capture that holds the credentials to the FTP/SSH server. Once we have shell, we then upload linpeas to the vulnerable machine and find that Python has cap_setuid, allowing us to escalate permissions to root.
If you enjoyed this video, drop a like. Subscribe for more content surrounding all topics related to IT and Cyber Security!
Until next time, Never Stop Learning!
3 окт 2024
