HTB: Ignite Walkthrough (Beginner)

2025-01-18 in cyber, ctf #nmap #gobuster #privilege-escalation

Enumeration with nmap revealed a CMS vulnerable to file upload. I achieved shell, pivoted to a user with weak sudo permissions, and escalated via a misconfigured script runner.

nmap -sC -sV -oN scans/nmap.txt 10.10.10.0/24
gobuster dir -u http://target -w /usr/share/wordlists/dirb/common.txt