Lab: PwnKit.
Goal
The goal of this step is to see the exploit in action.
Step 2: Running the exploit.
- Setup:
- To do this step, you will need a copy of the pwnkit virtual machine PwnKit.ova
- Install and boot this machine.
- Log in as alice (password alice)
- Assure yourself that Alice has no special privileges.
- Test the exploit
- The code for the exploit has been downloaded into Alice's
pwnkit directory.
- It is called
exploit.cpp
- It is directly from a github repo
- Change to Alice's
pwnkit directory.
- Compile all of the programs by typing
make
- This will build several programs, but right now you are interested in
exploit.
- Run exploit by typing
./exploit
- Identify the user running the shell.
- Assure yourself that this is indeed root.
- Logout of the shell by typing
exit