low
Checking for sudo privileges of the low user after making a lateral movement
low@sneakymailer:~$ sudo -l
sudo: unable to resolve host sneakymailer: Temporary failure in name resolution
matching defaults entries for low on sneakymailer:
env_reset, mail_badpass,
secure_path=/usr/local/sbin\:/usr/local/bin\:/usr/sbin\:/usr/bin\:/sbin\:/bin
user low may run the following commands on sneakymailer:
(root) nopasswd: /usr/bin/pip3The low user is able to execute /usr/bin/pip3 as the root user
pip is a dangerous binary to be used with sudo privileges
I will use this for privilege escalation