Flu 🔸

Enumeration

Port 8090 shows a Confluence page.

Searching for exploits, we have this: https://github.com/jbaines-r7/through_the_wire

Initial Access

Get the flag.

Privilege Escalation

Notice the script at /opt.

Using pspy64, we see that it is being executed periodically.

The file is ours, so we can add a payload.

Post Exploitation

Get the flag.