CyberSploit: 1 Walkthrough

Reasonable Doubt

2020-08-18 (Updated: 2020-08-18)

vulnhub

reference	CyberSploit: 1
target ip	192.168.1.6

Scan with nmap:

nmap

Enumerate HTTP with gobuster:

gobuster

Request http://192.168.1.6/robots, and decode:

robots

Request http://192.168.1.6:

index

Use flag1 as the SSH password:

ssh_itsskv

/home/itsskv/flag2.txt:

flag2.txt

Convert from binary to text using this site:

flag2

Enumerate OS version:

kernel

Escalate from user itsskv to user root with Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - ‘overlayfs’ Local Privilege Escalation:

/root/finalflag.txt:

finalflag.txt