Privilege-Escalation
June 21, 2022 · View on GitHub
בס״ד
⚜️ Aภl๏miuภuຮ ⚜️
⫷ HacKingPro ⫸
⫷ TryHackMe | KoTH ⫸
⫷ Privilege-Escalation⫸
⫷ ScanPro | Linfo | Diablo ⫸
⫷ Offensive-Security | PenTest ⫸
⫷ Goals | Studies | HacKing | AnyTeam ⫸
Privilege Escalation Vectors
- Following information are considered as critical Information of Linux System:
- The version of the operating system
- Any Vulnerable package installed or running
- Files and Folders with Full Control or Modify Access
- Mapped Drives
- Potentially Interesting Files
- Network Information (interfaces, arp)
- Firewall Status and Rules
- Running Processes
- Stored Credentials
- Sudo Rights
- Path Variables
- Docker
- Buffer Overflow conditions
- Cronjobs
- Capabilities
GiTools
-
Lynis - Security auditing and hardening tool, for UNIX-based systems.
-
This contains common local exploits and enumeration scripts
Other Sources
- https://hacktoday.io/tag/privilege-escalation
- PEASS-ng
- LinEnum
- Bashark 2.0
- LES: Linux Exploit Suggester
- Linuxprivchecker
- Linux Smart Enumeration