8 box enum chris + privesc

# C:\ has docs
C:\>dir

10/01/2019  01:04 PM    <DIR>          Docs

C:\Docs>dir
04/11/2019  09:31 AM               285 note.txt
04/11/2019  09:17 AM           552,607 php for dummies-trial.pdf

C:\Docs>more note.txt
Hi Chris,
        Your php skillz suck. Contact yamitenshi so that he teaches you how to use it and after that fix the website as there are a lot of bugs on it. And I hope that you've prepared the documentation for our new app. Drop it here when you're done with it.
Sniper CEO.

# checking user directory
C:\Users\Chris>tree /f
3D Objects
Contacts
Desktop
       user.txt
Documents
Downloads
       instructions.chm
Favorites
      Bing.url
Links
       Desktop.lnk
       Downloads.lnk
Music
Pictures
Saved Games
Searches
Videos

# checking out instructions.chm
# sudo apt-get install xchm
$ xchm instructions.ch
Sniper Android App Documentation
Table of Contents
Pff... This dumb CEO always makes me do all the shitty work. SMH! 
I'm never completing this thing. Gonna leave this place next week. Hope someone snipes him

# trying to find online for malicious CHM,
| /usr/share/nishang/Client/Out-CHM.ps1

# cant find HTML Help Workshop on system or online?
| https://github.com/fantaisie-software/purebasic/issues/149
# able to download it, but does not have hhc.exe

Privesc

• https://0xdf.gitlab.io/2020/03/28/htb-sniper.html#weaponize-chm