Crafty writeup by evyatar9

Read my writeup for Crafty machine on:


To solve this machine, we start by using nmap to enumerate open services and find port 80 and 25565.

User: Discovered a Minecraft server. Exploited CVE-2021-44228 (log4shell) to achieve Remote Code Execution (RCE) on the Minecraft server. Leveraged the exploit to establish a reverse shell as svc_minecraft.

Root: Identified a Minecraft plugin containing the Administrator credentials. Utilized a PowerShell script (runas.ps1) to obtain the root flag as Administrator.