t.miller
Checking the DB credential for password reuse
┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/marketing/Limesurvey-RCE]
└─$ ssh t.miller@$IP
The authenticity of host '192.168.211.225 (192.168.211.225)' can't be established.
ED25519 key fingerprint is SHA256:bdEzYRpG4k3NkIr03/E2H6ltJRUD52Zi5YA0fkNr/nY.
This key is not known by any other names.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '192.168.211.225' (ED25519) to the list of known hosts.
t.miller@192.168.211.225's password:
Welcome to Ubuntu 20.04.4 LTS (GNU/Linux 5.4.0-122-generic x86_64)
* Documentation: https://help.ubuntu.com
* Management: https://landscape.canonical.com
* Support: https://ubuntu.com/advantage
System information as of Tue 01 Apr 2025 03:53:58 PM UTC
System load: 0.0 Processes: 237
Usage of /: 70.7% of 9.75GB Users logged in: 0
Memory usage: 45% IPv4 address for ens160: 192.168.211.225
Swap usage: 0%
0 updates can be applied immediately.
The list of available updates is more than a week old.
To check for new updates run: sudo apt update
The programs included with the Ubuntu system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
applicable law.
t.miller@marketing:~$ whoami
t.miller
t.miller@marketing:~$ hostname
marketing
t.miller@marketing:~$ ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
3: ens160: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
link/ether 00:50:56:9e:73:ea brd ff:ff:ff:ff:ff:ff
inet 192.168.211.225/24 brd 192.168.211.255 scope global ens160
valid_lft forever preferred_lft foreverPassword reuse confirmed
Lateral Movement made to the t.miller user via SSH