Tag: unquoted paths
-
Watcher | TryHackMe
A boot2root Linux machine utilising web exploits along with some common privilege escalation techniques. Medium difficulty. Starting with an nmap scan we see open FTP, SSH and HTTP. FTP doesn’t accept anonymous logins so on to poke at the web server. I like feroxbuster and initially the /dirb/common.txt wordlist for a quick overview of hidden […]