SOLIDSTATE: 1 Walkthrough
It was originally created for HackTheBox
Enumeration
no need to enumerate port 22.
More Enumeration…
let’s enumerate the HTTP,
Manual testing,
The site seems to be a static one.
- Searching Exploit,
The exploit will get triggered when someone logs in.
Let’s change pwd for other users.
Let’s read the mails,
Let’s read the mail,
username: mindy
pass: P@55W0rd1!2@
Let’s SSH,
Privilege Escalation
Use this to break out of the shell,
Ref: https://www.hackingarticles.in/multiple-methods-to-bypass-restricted-shell/