New OffSec Proving Grounds walkthrough. This time we tackle a machine called Exghost. This walkthrough involves:
Brute forcing credentials
Reading through a Wireshark packet capture file
Crafting a malicious image to exploit ExifTool
Exploiting a kernel vulnerability
I had to get creative at the end and I leaned a bunch of stuff going through this machine. ***Spoiler***Walkthrough of the machine called “Exghost” in the OffSec Proving Grounds…don’t watch the video if you don’t want help with the machine!
Lot’s of manual exploits and adjusting to them not working as expected. Don’t overthink initial foothold!
