vmdak
Testing the leaked password from the target Prison Management System instance,RonnyCache001, against the system user; vmdak
www-data@vmdak:/var/tmp$ su vmdak
Password: RonnyCache001
$
$ whoami
whoami
vmdak
$ hostname
hostname
vmdak.local
$ ip a
ip a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
3: ens160: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000
link/ether 00:50:56:9e:fa:06 brd ff:ff:ff:ff:ff:ff
altname enp3s0
inet 192.168.125.103/24 brd 192.168.125.255 scope global ens160
valid_lft forever preferred_lft foreverLateral Movement made to the vmdak user