Hacker vs Hacker - TryHackMe Walkthrough

Introduction. An excellent case study of what happens when the server is compromised by multiple hackers, remember there are multiple approaches to solve this particular room and for privilege escalation but this is the most simplest method. Privilege escalation, insecure file upload, investigation/ analysis code for reverse shell upload, enumerating the machine, horizontal privilege escalation from www-data to lachlan user and then popping the root shell from /home/lachlan/bin, via customized reverse shell elf linux executable file , catching the shell and finally becoming root user. Chapters. 0:00 Hacker vs Hacker Room - Introduction 1:17 Network Scanning (nmap -sS IP -v) 2:06 File Upload - Examination 2:35 Code Analysis 6:13 Reverse Shell Exploitation 7:48 Payload - Linux Reverse PHP Shell 8:55 Uploading - PHP Reverse Shell 12:54 Horizontal Privilege Escalation 15:57 Vertical Privilege Escalation 17:03 Payload - Linux Reverse TCP Shell 20:19 Setting SUID + Exec Bits 20:54 Lets catch the reverse shell 22:21 I am ROOT !!!