Open ports
Find files on a SMB share
Download all the files in the Commander share
Find a vulnerable plugin on a wordpress site
Find the wordpress site
Enumerate the plugins
…
Exploit a vulnerable plugin (simple-file-list) to obtain a reverse shell
Find an exploit for version 4.2.2
Edit the IP address and port in the exploit
Execute the exploit
Catch the reverse shell
Obtain local.txt
