SAR: 1 — Walkthrough

Enumeration

only one service is running
we know that it is using php
got sar2html dir by looking into the robots.txt

Exploitation

sar2HTML Ver 3.2.1
  • I used wget to get my shell into the webserver and ran it to get reverse shell.

Privilege Escalation

found this….. ;p
Photo by Lidya Nada on Unsplash

--

--

--

What could be more fun than breaking stuffs!!!

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

IObit Applock: How to Lock Individual Android Apps Using your Face

Origin DNS error |

About Corona Crypto

@RealTryHackMe #AdventOfCyber Series: Challenge 7 — Migration Without Security…

Benefits of S-wallet for users

CEASE SUPPORT for HUPAYX service on Btrade

{UPDATE} FINAL FANTASY IV Hack Free Resources Generator

Notice & Breakdown: EFF’s Letter to the EU’s Copyright Directive Negotiators

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Gowthamaraj

Gowthamaraj

What could be more fun than breaking stuffs!!!

More from Medium

Steganography Challenge by Careem

Hack the box shibboleth writeup :

Boosting Cyber Resilience

Vulnhub : Earth Walkthrough