linenum scan
See that there is write permission in the file "/etc/apache2/apache2.conf".
Downloaded the file in my machine and edited these lines specifying the username "mahakal".
The premise is to get the names of users and groups in /etc/passwd
Build an HTTP server with Python, download the file to the machine, and replace the original one.
Now, we create a reverse shell in PHP so that when we run it, we control it as user "mahakal".
This web shell will be hosted in the directory " /var/www/html ".
Now we will place a Netcat listening on port 5555. </