Linux priv esc

• Kernal exploitation

• Passwords & File Permissions

  • Stored passwords

  • weak file permissions

  • SSH keys

• Sudo

  • Shell escaping via sudo

  • LD_PRELOAD

  • CVE-2019-14287

• SUID

  • Including Shared object injection

  • Binary System links

• Environment variables

• Capabilities

• Schedualed tasks

  • Cron & Timers Overview

  • Escalation via Cron Paths

  • Escalation via Cron Wildcards

  • Escalation via Cron File Overwrites

• NFS Root Squashing

• Docker