Tabby
Tabby
Tabby 259
Tabby
RETIRED MACHINE

Tabby

Tabby - Linux Linux
Tabby - Easy Easy

4.2

MACHINE RATING

14026

USER OWNS

11960

SYSTEM OWNS

20/06/2020

RELEASED
Created by egre55

Machine Synopsis

Tabby is a easy difficulty Linux machine. Enumeration of the website reveals a second website that is hosted on the same server under a different vhost. This website is vulnerable to Local File Inclusion. Knowledge of the OS version is used to identify the `tomcat-users.xml` file location. This file yields credentials for a Tomcat user that is authorized to use the `/manager/text` interface. This is leveraged to deploy of a war file and upload a webshell, which in turn is used to get a reverse shell. Enumeration of the filesystem reveals a password protected zip file, which can be downloaded and cracked locally. The cracked password can be used to login to the remote machine as a low privileged user. However this user is a member of the LXD group, which allows privilege escalation by creating a privileged container, into which the host's filesystem is mounted. Eventually, access to the remote machine is gained as `root` using SSH.

Machine Matrix

Ready to start your
hacking journey?