Levram Notes & Methodology

Start Here: Service Discovery

This includes my mistakes, reasoning, and rabbit holes — it’s not the most direct way to solve the box!

Findings

Vulnerabilities and Remediation

Web service admin panels (for both Django and Gerapy) use default credentials admin:admin
- Change credentials from default
Python3.10 has capabilities set, allowing a user to elevate their privileges to root
- Use more granular permissions and capabilities

Flags

/home/app/local.txt: c8041b9100165c635168244c8e290463
/root/proof.txt: 664c1ceb0e7d3422c8917d50beb86c86

OSCP Note Template and Runbooks

This is my checklist of commands and methodologies to use while taking the OSCP. Feel free to use, adapt for your own use, or open a PR with suggestions!

Clone this site’s repo, open ‘content’ in Obsidian, and copy the template’s directory for each machine
Start with ‘Service Discovery’ and move between the other pages as applicable

Veilcat

Explorer

Latest

OSCP 🐲

Medjed

OSCP Note Template and Runbooks

Levram

Levram Notes & Methodology

Start Here: Service Discovery

Findings

Vulnerabilities and Remediation

Flags

OSCP Note Template and Runbooks

Service Enumeration

Service Discovery

Privilege Escalation

Graph View

Table of Contents