Sau - HackTheBox
Sau is a machine that has a vulnerable version of the service request-baskets. The vulnerability presented is a Server Side Request Forgery that allows us to perform requests to internal services not exposed in the machine. The hidden service is a vulnerable version of Maltrail which gives us OS command injection giving access to the machine. In the end, to escalate privileges we used a misconfigured command in sudoers that uses systemctl status pager to get a shell as root.