{
  "entrypoint_kind": "network_service",
  "entrypoint_detail": "ProFTPD FTP server on localhost:2121 handling authenticated RNFR/RNTO/RETR commands",
  "service_started": true,
  "healthcheck_passed": true,
  "target_path_reached": true,
  "runtime_stack": ["proftpd-v1.3.9b", "ftp-python-client", "linux-proc-self-root"],
  "proof_artifacts": [
    "logs/reproduction_steps.log",
    "logs/proftpd.log",
    "repro/artifacts/ftp_exploit_output.txt",
    "repro/proftpd.conf",
    "repro/ftp-root/protected/secret.txt",
    "repro/ftp-root/public/leaked.txt"
  ],
  "notes": "Vulnerable ProFTPD v1.3.9b allows authenticated RNFR using /proc/self/root prefix to bypass DenyAll Directory ACL; secret file is renamed to public directory and retrieved."
}
