https://chiefdennis.github.io/tags/weak-credentials/Recent content in Weak Credentials on Chief Dennis' BlogHugoenSat, 29 Nov 2025 19:00:00 +0100https://chiefdennis.github.io/posts/payday-walkthrough/Sat, 29 Nov 2025 19:00:00 +0100https://chiefdennis.github.io/posts/payday-walkthrough/<h2 id="payday-offsec-walkthrough"> Payday OffSec Walkthrough <a class="heading-link" href="#payday-offsec-walkthrough"> <i class="fa-solid fa-link" aria-hidden="true" title="Link to heading"></i> <span class="sr-only">Link to heading</span> </a> </h2> <p><img src="https://chiefdennis.github.io/posts/payday-walkthrough/Picture_0.png" alt="image"></p> <p>This walkthrough documents the full compromise of the OffSec “Payday” target machine. The attack path involves classic recon, discovery of an outdated CS-Cart e-commerce panel, authenticated file upload leading to RCE, and finally a privilege escalation via weak local user credentials and unrestricted sudo access. Despite a large attack surface (SMTP/IMAP/SSLv2/Samba 3.x/etc.), the intended path is surprisingly simple—but easy to overlook.</p>