[HackTheBox] Atom

Enumerating the open SMB share shows one interesting .PDF file (the directories client1, client2, client3 were empty). The exploit is utilising a remote code execution in Electron updater. The article is very interesting and can be found here: https://blog.doyensec.com/2020/02/24/electron-updater-update-signature-bypass.html Generate reverse shell payload using Metasploit: Generate a file hash for the reverse shell payload: UploadContinue reading