- Published on
Enumeration led me to WordPress, and eventually a username & computer name to authenticate within a web powershell. Then for foothold, we get a web powershell to a reverse shell, privesc with a pivot to msedge.exe, then utilize sam & system hashes to get hive information, which will eventually lead me to root.