Get remote access using admin and read user.txt Access the web dashboard to get root flag
We know that admin uses weak password
Upon scanning we see ssh, http, pop3 on 110 -
Bruteforce access with rockyou.txt and get admin:lovely
s3cr3t_4dm!n
telnet ok alex afella
adavid / i0zSAQjP1dci user.txt flag → dHXMVGWUs0 root.txt → D6atSBFCP1