Ideas for Privilege Escalation (Linux)
#1
Ideas for Privilege Escalation (Linux)

Been reading up on privilege escalation for Linux lately. Just sharing some interesting links and methods for this. I'll make a complete guide/thread once I've gotten the hang of it more.

- Local root exploitation

In other words, kernel exploits. See thread: https://greysec.net/showthread.php?tid=1355

- Exploiting SUID (Set User ID) files or exploiting cronjobs.
https://www.hackingarticles.in/linux-pri...-binaries/
https://null-byte.wonderhowto.com/how-to...t-0173929/

https://www.hackingarticles.in/linux-pri...cron-jobs/
https://skyenet.tech/exploiting-cron-jobs/
https://www.armourinfosec.com/linux-priv...-cronjobs/

- Using symbolic links to obtain root.
https://security.stackexchange.com/quest...nerability
https://www.hackingarticles.in/linux-pri...-variable/

- IFS exploitation.
http://www.dankalia.com/tutor/01005/0100501004.htm
https://github.com/frizb/Linux-Privilege.../README.md
https://stackoverflow.com/questions/2106...ad-and-ifs
Reply
#2
https://book.hacktricks.xyz/ is also good resource for privilege escalation techniques.
Reply
#3
https://blog.g0tmi1k.com/2011/08/basic-l...scalation/
Kinda dated, but still relevant post by the legendary g0tmi1k
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Windows Privilege Escalation (And more...) Insider 0 1,170 07-08-2020, 03:49 PM
Last Post: Insider
  [Kali linux] Not working public folders CalmnesSs 15 11,344 08-20-2018, 05:13 PM
Last Post: CalmnesSs
  How Can I Use Kali Linux To Hack Email code419 23 17,224 03-05-2018, 04:08 PM
Last Post: code419
  Meltdown Checker for Linux Users Hysteresis 3 6,685 01-08-2018, 05:55 PM
Last Post: Insider