Read my writeup for Crafty machine on:
TL;DR
To solve this machine, we start by using nmap to enumerate open services and find port 80 and 25565.
User: Discovered a Minecraft server. Exploited CVE-2021-44228 (log4shell) to achieve Remote Code Execution (RCE) on the Minecraft server. Leveraged the exploit to establish a reverse shell as svc_minecraft.
Root: Identified a Minecraft plugin containing the Administrator credentials. Utilized a PowerShell script (runas.ps1) to obtain the root flag as Administrator.