Nathan Woodburn
0047e5d83c
- Added tutorial for gaining root access on the kali.boysbrigade.au server. - Included a new file H1.md with instructions on how to change shell using su command. - Renamed README.md to OPTIONAL-keylogger.md and updated its content to reflect the changes in task description.
BB-Pen-2
The task this week is to get root access on the kali.boysbrigade.au server.
You have been given a user account on the server (from BB-Pen-1).
Use this account to gain access to the admin account.
Tutorial
-
Login as
bob(password in seconduser.pass fromgituser). -
See if you can change directory to test
You probably get this message-rbash: cd: restricted.
This means that you are in a restricted shell. Try to login to a normal shell (/bin/bash).
Hintsuis the command to switch user (switch to yourself).
Need help? Look in H1.md for help. -
Once you have a normal shell, try to change directory to test again.
If you are able to change directory, go back to the home directory (just runcd). -
One of the best ways to get root access is to find a program that is running as root, and exploit it.
Runcat /etc/crontabto see all the commands that are run on a schedule by the admin.
Notice anything you can exploit? -
If you found something, try to exploit it.
Something you can try is running this to add yourself to the sudo (admin) group.
echo 'bob ALL=(ALL:ALL) ALL' >> /etc/sudoers
See if you are able to run sudo whoami. This should print root if you have admin access.
(You might need to wait a minute for the cron job to run)