Machine Synopsis

Lantern is a Hard Linux machine that showcases a misconfiguration in the **Skipper Proxy** and a **Blazor-based** web application. To successfully complete this challenge, an attacker must first exploit a [Server-Side Request Forgery](https://owasp.org/Top10/A10_2021-Server-Side_Request_Forgery_%28SSRF%29/) (**SSRF**) vulnerability to pivot into an internal service running locally. This will allow them to read files and upload new ones where the ultimate goal is to obtain a keypair that can be used to gain SSH access to the system. Privilege escalation is achieved by leveraging the misuse of the `procmon` utility, which allows for monitoring sensitive syscalls. To succeed in this challenge, they player must conduct careful reconnaissance, exploit .NET binaries, and leverage privilege escalation techniques.