We use cookies to make your experience better. To comply with the new e-Privacy directive, we need to ask for your consent to set the cookies. Learn more.
sudo -l This will list the commands that can be executed with sudo privileges. Notice that the park user can execute the following command with sudo privileges:
unzip backup.zip Inside the unzipped directory, you'll find a file called dinosaur.cfg . This file contains credentials: jurassic park tryhackme
http://<machine_IP>/backup Download the backup file ( backup.zip ) and unzip it: sudo -l This will list the commands that
nmap -sV <machine_IP> Replace <machine_IP> with the IP address provided by TryHackMe. jurassic park tryhackme
sudo python /usr/bin/jurassic Create a new Python script to exploit this: