Skip to content

Sorcerer 🔸

Enumeration

Web server shows a 404 not found, let's try feroxbuster

Port 7742 shows a login form, but is not working, the front always shows invalidlogon.

Ferox finds a zipfiles path

We find a id_rsa key in max's zip

We also find a tomcat password

A wrapper that prevents ssh access, only scp

Initial Access

The authorized keys use this wraper so we can remove it and scp it to replace it, and connect with ssh normally

Privilege Escalation

get flag

Post Exploitation

Get the flag