Quick update.
I’ve recently exploited 5 of the best companies across the globe. 4 led to rce, 1 led to me being able to scan their entire network segment and do LFI scanning as well.
1 led to a ROOT level shell into their core docker node that’s responsible for the entire companies’ session tokens, FOR ALL THEIR USERS. I took screenshots of their $10k cpu, and their memory chips from their CLI.
These engagements were not as formal as some of my other onsites have been in the past.
They did not go as planned.
Leave a Reply