SAR: 1 — Walkthrough
Sar is an OSCP-Like VM with the intent of gaining experience in the world of penetration testing.
Sar is an OSCP-Like VM with the intent of gaining experience in the world of penetration testing.
Enumeration
Exploitation
Let’s search for any available vulnerabilities.
- I used wget to get my shell into the webserver and ran it to get reverse shell.
Privilege Escalation
After becoming www-data, let’s run the linpeas
edited(chmod +s /bin/bash) the write.sh and got a shell.