In this selfmade walkthrough of TryHackMe, popular exploit #ShellShock for CGI-based web server is used to remotely exploit the webserver and gain access the #hosting #machine. Then using #kernelExploit for vulnerable #linux version to gain complete machine root access via successful #privilege_escalation.
Chapters:-
0:00 - 0day - Room Intro
0:45 - Nmap - Stealth Scan
1:34 - Nikto - Web Vulnerability Scanner
2:53 - Dirbuster - Directory BruteForce
3:56 - ShellShock Vulnerability
4:34 - Msfconsole Scan & Exploitation
5:05 - ShellShock Exploitation
7:29 - Gaining Shell Access
9:32 - Linux Enumeration
9:55 - Kernel Exploit
11:29 - Linux Local Privilege Escalation
12:41 - Flag Submission
https://tryhackme.com/room/0day (Room Link)
#shellShock #privilege_escalation #tryhackme #nikto #nmap #kernelExploitation #networkPentesting #webserverExploitation #msfconsole #metasploit
