PNPT : Black Pearl


  • Enumerate to find a virtual host
  • Find the Navigate CMS exploit
  • Use SUID exploit to gain root


Run nmap scan to find for open ports.

Run a gobuster scan to find for hidden directories.

Port 80


DNS Enumeration



Use metasploit to gain a shell.

Transfer linpeas to find more clues.

Seems like we can exploit some permissions.

Privilege escalation

Check GTFObins for SUID exploits.

Root is gained.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s