Extracting file from the target and analyze it with ltrace
Now let's transfer the file over to kali and analyze it.
base64 -w0 /usr/bin/viewuser this will encode the file into base64. -w0 eliminates line wrapping.
base64 textfile.txt --decode
use "ltrace" to analyze it.
executing /tmp/listusersif we replace this file with a shell, we can get a root.replaced the content with 👍
ran the viewuser app
Last updated