Pentesting Notes

Ctrlk

㊙️r3dcl1ff
Daily Syncs
- Design Standups
Weekly Syncs
- Company Weeklies
Other Regulars
- Company Weeklies

Powered by GitBook

On this page

㊙️r3dcl1ff
🈲Privesc

sudo + GTFObins

Different privesc vectors abusing sudo

sudo /bin/bash /bin/rpm /usr/bin/gdb /usr/bin/php7.2 sudo -u#-1 /bin/bash jjs /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.242.b08-0.el7_7.x86_64/jre/bin/java /usr/bin/vim /usr/bin/tee /usr/bin/nice /usr/bin/dd nmap /usr/bin/zip /usr/bin/date /usr/bin/base32 /usr/sbin/hping3 /usr/bin/cpulimit /usr/bin/python /etc/passwd echo /bin/bash to executable file /usr/bin/find sudo_inject /bin/systemctl less /bin/ash awk scp man ftp knife /usr/sbin/iftop /usr/bin/nano ed openssl (read file)tar flock expect socat Perl /usr/bin/env strace

PreviousPrivesc Nextsudo /bin/bash

Last updated 3 years ago