Levram 🔹

Enumeration

At port 800 we have a login page gerapy

Testing admin:admin works

Initial Access

Searchsploit gives us the exploit to gerapy

Create a project in the app and execute the script

Get the flag

Privilege Escalation

Transfer linpeas

Python has capabilities so:

Post Exploitation

Get the flag