Pwning a Splunk can allow to execute commands on any host with Universal Forwarder installed.
Splunk always have Python installed
We can use this malicious module:
https://github.com/0xjpuff/reverse_shell_splunk