Hack The Box - Validation

Retired machine from HTB where we play with SQLi and privilege escalation thorough Apache service. S4vitar developes while streaming a python scrypt to get shell in the same running terminal. I post and explain that script in this writeup for reference purposes, but i use a more direct, less elegant method, but always following the OSCP methodology, so I do not use SQLmap or far from it Metasploit.

Further notes. 

WriteUp: https://docs.google.com/document/d/e/2PACX-1vS4ScSPG-ovk_XYU1JdFf5F_-xUjmlKweL3Mz85f9mty1PevsrUyGHjwvwhftLv4QZwiURUAmQsbNmS/pub