Improved a pentest lab vm in 2023 Fall CY5150 as the TA
- For Windows and Mac with Intel chip, use this VM Image.
- For Mac with M1 chip, check Pentest_AWS_Config_M1.pdf for configuring the lab on AWS.
check Lab Document.
- Insecure version of smb service
- FTP Anonymous login + SSH Weak Credentials
- Exposed .git directory
- File Upload Bypass <-- hard
- Cronjob Priviledge Escalation
Prof. Kevin Amorin, Ujas Bhadani