You're reading from Privilege Escalation Techniques Learn the art of exploiting Windows and Linux systems

Product type Paperback

Published in Nov 2021

Publisher Packt

ISBN-13 9781801078870

Length 340 pages

Edition 1st Edition

Languages

Python

Tools

Linux

Concepts

Penetration Testing

Author (1):

Alexis Ahmed

View More author details

Table of Contents (18) Chapters

Preface

1. Section 1: Gaining Access and Local Enumeration

2. Chapter 1: Introduction to Privilege Escalation FREE CHAPTER

3. Chapter 2: Setting Up Our Lab

4. Chapter 3: Gaining Access (Exploitation)

5. Chapter 4: Performing Local Enumeration

6. Section 2: Windows Privilege Escalation

7. Chapter 5: Windows Kernel Exploits

8. Chapter 6: Impersonation Attacks

9. Chapter 7: Windows Password Mining

10. Chapter 8: Exploiting Services

11. Chapter 9: Privilege Escalation through the Windows Registry

12. Section 3: Linux Privilege Escalation

13. Chapter 10: Linux Kernel Exploits

14. Chapter 11: Linux Password Mining

15. Chapter 12: Scheduled Tasks

16. Chapter 13: Exploiting SUID Binaries

17. Other Books You May Enjoy

Escalation via shared object injection

In the previous section, Searching for SUID binaries, we identified the SUID binaries on the target system with linPEAS. However, in addition to listing the SUID binaries, linPEAS also performed additional vulnerability checks on the SUID binaries to determine whether they can be exploited.

Analyzing the linPEAS results closely reveals that linPEAS executes and checks the binaries with the strace utility to identify the shared objects utilized by the binary.

Note

strace is a Linux utility that is used to monitor and debug applications and processes and their interaction with the Linux kernel.

linPEAS runs each SUID binary with strace to identify the shared objects that are used by the binary and lists their respective locations, as highlighted in the following screenshot: