My write-up of ellingson; A nostalgic (and awesome) box from Ic3M4n, aka @BenGrewell where we exploit a misconfigured Flask site, find some creds laying around, and then perform a Ret2libc attack on a SUID bit binary to get root.
Feel free to hit me up with any questions/comments. Thanks!