Start with scan IP of machine
after search for medusa service we found CVE https://www.exploit-db.com/exploits/42779 which we can use Metasploit to exploit this service
medusa
we success to take a reverse shell on this machine
now let’s make a privilege escalation which we started to search on process have SUID
now let’s search on python 2.7 exploit
Last updated 9 months ago
find / -perm -u=s -type f 2>/dev/null
/usr/bin/python2.7 -c 'import os; os.execl("/bin/sh", "sh", "-p")'
