Photobomb
Photobomb
Photobomb 500
Photobomb
RETIRED MACHINE

Photobomb

Photobomb - Linux Linux
Photobomb - Easy Easy

4.2

MACHINE RATING

15108

USER OWNS

14133

SYSTEM OWNS

08/10/2022

RELEASED
Created by slartibartfast

Machine Synopsis

Photobomb is an easy Linux machine where plaintext credentials are used to access an internal web application with a `Download` functionality that is vulnerable to a blind command injection. Once a foothold as the machine's main user is established, a poorly configured shell script that references binaries without their full paths is leveraged to obtain escalated privileges, as it can be ran with `sudo`.

Machine Matrix

Ready to start your
hacking journey?