MSSQL: Juicy Potato: Privilege Escalation

Overview

A Kali GUI machine and a target machine running a vulnerable server are provided to you. The IP address of the target machine is provided in a text file named target placed on the Desktop of the Kali machine (/root/Desktop/target).

Your task is to fingerprint the application using the tools available on the Kali machine and exploit the application using the appropriate Metasploit module.

Then, escalate privilege using Juicy -Potato Metasploit local exploit module.

Objective: Gain the highest privilege on the compromised machine and get two flags.

Instructions:

Your Kali machine has an interface with IP address 10.10.X.Y. Run “ip addr” to know the values of X and Y.
The IP address of the target machine is mentioned in the file “/root/Desktop/target”
Do not attack the gateway located at IP address 192.V.W.1 and 10.10.X.1

Solutions

The solution for this lab can be found in the following manual: https://assets.ine.com/labs/ad-manuals/walkthrough-2323.pdf

PreviousRegistry AutoRun NextUAC Bypass: UACMe

Last updated 10 months ago