Seven Layers delivers comprehensive, dependable, and cost-effective solutions tailored to our clients’ needs and budgets. We offer cutting edge defensive security strategies to provide you with the ability to protect key systems and information – and can pair those with traditional information technology services to keep your business up and running, so you can focus on the business that is important to you.

    We provide penetration testing services and vulnerability assessments for peace of mind, risk management, and regulatory compliance. And because your employees are often your first line of defense - or weakness – we offer employee education in computer security and corporate security policies.

    Our support services cover your full suite of end user desktops, in-house servers, cloud-based servers, and cloud services. This includes seamless support for employees in all locations, whether they are in corporate offices, or are remote users. We will manage and develop content management systems, customized software and web applications, as well as working with off the shelf applications.


     

    Not to be the guy who says this is easy because everyone is somewhere on the ladder but this one is a pretty big softball. 

    The description states:  "This boot2root is a linux based virtual machine and has been tested using VMware workstation 14."  Works fine on VirtualBox which is what I used.

    This is part of a new batch of servers that were dumped overnight and I had a few minutes to spare.

    Kicking off with Nmap:





    Couple of options but I quickly move to MySQL and I attempt to login using root and [no password]:  





    I'm in.  I search for databases and I find:





    Moving over to SSH:





    While checking out the home directory for Mistic, I find:





    While hunting crontab, I find:





    I modify the script with a revers shell:





    With my handler setup, I wait for it to execute:





    It pops, I'm root, and I go for the flag! 

    Simple as long as you understand what crontab does.  If not, that's a new lesson learned.


    Cybersecurity solutions for small businesses.

    info@sevenlayers.com
    877.468.0911

    © 2021 Seven Layer Networks, Inc. | All rights reserved.