Once logged in as an administrator on the PRTG dashboard, you can exploit the "Notifications" feature. By creating a new notification that executes a malicious .ps1 or .bat file, you can trigger a reverse shell or create a new admin user. Tools Used Nmap: For port scanning and service identification. FTP Client: To browse the file system anonymously.
You can log in via FTP using the username anonymous and no password. netmon-htb
The quickest path to the user flag involves the FTP service: Once logged in as an administrator on the