Hello there, i am studying IT security at the university and among my classmates hackthebox became quite trendy. For the first time, i managed to get past recon and got a shell. As i am collecting a record of good practices and commands to run while pentesting, my question is:
what do you look for, what steps you plan, what commands you surely run/try to run once you got a shell but no passwords?
this is a list of what i currently have:
kernel version (uname -a)
sudo -l (sudo less -->!/bin/bash) (sudo find /var/log -exec -/bin/bash -i
ifconfig -a netstat -antup
find / -perm -u=s -type f 2>/dev/null
As you might have already figured out, i got some info by running those commands but nothing that led me to the path to user’s pw.
Thanks in advance