Tentacle
Tentacle
Tentacle 310
Tentacle
RETIRED MACHINE

Tentacle

Tentacle - Linux Linux
Tentacle - Hard Hard

4.6

MACHINE RATING

1189

USER OWNS

1125

SYSTEM OWNS

23/01/2021

RELEASED
Created by polarbearer

Machine Synopsis

Tentacle is a Hard linux machine featuring a Squid proxy server. Bypassing Squid proxy authentication reveals a host which is making use of a vulnerable OpenSMTPD service. Initial foothold can be achieved by the exploitation of it. A SMTP client configuration file discloses a password which assists in generating a valid Kerberos ticket. This ticket then can be used to move laterally. Finally a cronjob can be exploited to escalate to another user who has privileges to add root user to Kerberos principals. This gives us a root shell.

Machine Matrix

Ready to start your
hacking journey?