[go: up one dir, main page]
Scribd
Upload
84 views5 pages

OSCP Notes - Privilege Escalation (Linux)

This document provides resources and notes on Linux privilege escalation techniques, including various commands and scripts for gaining information and exploiting vulnerabilities. It includes links to tools like Lynis and Linux Exploit Suggester, as well as references to detailed guides on privilege escalation methods. Additionally, it outlines the types of information that can be gathered during a privilege escalation assessment.

Uploaded by

kabegij928
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
84 views5 pages

OSCP Notes - Privilege Escalation (Linux)

This document provides resources and notes on Linux privilege escalation techniques, including various commands and scripts for gaining information and exploiting vulnerabilities. It includes links to tools like Lynis and Linux Exploit Suggester, as well as references to detailed guides on privilege escalation methods. Additionally, it outlines the types of information that can be gathered during a privilege escalation assessment.

Uploaded by

kabegij928
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 5

MENU

SECURISM
All about Information Security

OSCP NOTES – PRIVILEGE ESCALATION (LINUX)

LYNIS

https://cisofy.com/lynis/

LINUX EXPLOIT SUGGESTOR

https://github.com/PenturaLabs/Linux_Exploit_Suggester

SHELL ESCAPE SEQUENCES


Create PDF in your applications with the Pdfcrowd HTML to PDF API PDFCROWD
nmap–> –interactive
vi–> :!bash
vi–> :set shell=/bin/bash:shell
awk–> awk ‘BEGIN {system(“/bin/bash”)}’
nd–> nd / -exec /usr/bin/awk ‘BEGIN {system(“/bin/bash”)}’ \;
perl–> perl -e ‘exec “/bin/bash”;’

COMMANDS USEFUL FOR GAINING INFORMATION :

https://blog.g0tmi1k.com/2011/08/basic-linux-privilege-escalation/

BASICS OF PRIVILEGE ESCALATION METHODS :

http://www.doomedraven.com/2013/04/hacking-linux-part-i-privilege.html
http://www.rebootuser.com/?p=1623#.V0W5Pbp95JP

LINUX PRIV CHECKER

https://www.securitysi t.com/download/linuxprivchecker.py

Here’s an overview of this Linux privilege escalation script identi ed:

Create PDF in your applications with the Pdfcrowd HTML to PDF API PDFCROWD
Basic system info (OS/Kernel/System name, etc)
Networking Info (ifcon g, route, netstat, etc)
Miscellaneous lesystem info (mount, fstab, cron jobs, etc)
User info (current user, all users, super users, command history, etc)
File and Directory permissions (world-writeable les/dirs, suid les, root home directory)
Files containing plaintext passwords
Interesting les, processes and applications (all processes and packages, all processes run by root and the associated
packages, sudo version, apache con g le, etc)
All installed languages and tools (gcc, perl, python, nmap, netcat, wget, tp, etc)
All relevant privilege escalation exploits (using a comprehensive dictionary of exploits with applicable kernel versions,
so tware packages/processes, etc)

UNIX PRIV ESC

./unix-priv-esc detailed > unix_priv_esc

LINUX LOCAL EXPLOIT – UDEV

http://www.madirish.net/370
https://www.exploit-db.com/exploits/8572/

Create PDF in your applications with the Pdfcrowd HTML to PDF API PDFCROWD
Advertisements

Virginia Woman Was Playing on


This Free Bingo Game, When
All Of A Sudden She Won Big

REPORT THIS AD

SHARE THIS:

 Twitter  Facebook

Like

Be the first to like this.

Search …

PAGES
Contact

Create PDF in your applications with the Pdfcrowd HTML to PDF API PDFCROWD
OSCP Notes – Bu fer Over low
OSCP Notes – Exploitation
OSCP Notes – File Transfers
OSCP Notes – Information Gathering
OSCP Notes – Meterpreter
OSCP Notes – Password Attacks
OSCP Notes – Port Forwarding
OSCP Notes – Port Scanning
OSCP Notes – Privilege Escalation (Linux)
OSCP Notes – Privilege Escalation (Windows)
OSCP Notes – Shells

Create PDF in your applications with the Pdfcrowd HTML to PDF API PDFCROWD

You might also like