search

Insecure System Components

hashtag
Abusing Setuid Binaries and Capabilities

Check for SUID

find / -perm -u=s -type f 2>/dev/null

Check capabilities

/usr/sbin/getcap -r / 2>/dev/null

hashtag
Abusing Sudo

sudo -l

hashtag
Abusing Kernel

cat /etc/issue
uname -r
arch
PreviousInsecure File PermissionsNextSQL Injection

Last updated