Escalation

• After gaining access to the system from payloadallthethings:

• I'm going to start by getting a more interactive terminal with the following:

python3 -c 'import pty; pty.spawn("/bin/bash")'

• I browsed through the system and found the second ingredient in /home/rick:

  • 1 jerry tear

• Well, I spent way too long looking for a way to become root user when it was super easy.

  • sudo su

  • Bam. I'm root. Simple as pi