How to use GTFOBins
Tryhackme — Jr Penetration tester — Room — Linux PrivEsc- Task 6 -Privilege Escalation: Sudo
https://tryhackme.com/room/linprivesc#
Task 6 Privilege Escalation: Sudo
Answer the questions below
Solution 1: — using https://gtfobins.github.io/
https://gtfobins.github.io/ is a valuable source that provides information on how any program, on which you may have sudo rights, can be used.
As we know user karen has three programs on target system with sudo rights.
let’s check with nano.
Just search nano at https://gtfobins.github.io/ and we got function named as sudo, let’s check it.
now let’s run “sudo nano” on target machine
Now press ctrl+R
then ctrl+X to move on execute a command mode
now we are on execute a command mode
Now we ran command “reset; sh 1>&0 2>&0"
as mentioned in GTFOBins
Now we got the shell, let’s check user i’d.
let’s capture the flag.