- Enumerate to find a virtual host
- Find the Navigate CMS exploit
- Use SUID exploit to gain root
Run nmap scan to find for open ports.
Run a gobuster scan to find for hidden directories.
Use metasploit to gain a shell.
Transfer linpeas to find more clues.
Seems like we can exploit some permissions.
Check GTFObins for SUID exploits.
Root is gained.