Depending on the version of the VM you are running, it may be vulnerable to recent Linux kernel exploits.
Most write-ups note that FTP allows Anonymous login . Inside the FTP directory, you will find FUNHXX17.zip among other files. FUNHXX17.zip
Look for writable scripts in /etc/crontab that are executed by root. Depending on the version of the VM you
This machine focuses on insecure file handling and exploitation of automated scripts. The FUNHXX17.zip file is the central piece of the initial exploitation phase. Look for writable scripts in /etc/crontab that are
Because the unzipping process often runs with high privileges (or as a user with write access to the webroot), you can create a malicious zip file containing a symbolic link .
FUNHXX17.zip is a target file associated with the (sometimes referred to as Funbox 11 or UnderTheGround) Capture The Flag (CTF) machine, available on platforms like Vulnhub and OffSec's Proving Grounds. Write-up: Funbox UnderTheGround (FUNHXX17.zip)
Create a symlink to a sensitive file (like /root/root.txt or /etc/shadow ) or a directory. Compress the symlink using the --symlinks flag in zip . Upload it back to the server.