HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 80 guests online
 
Advertisement

You are here:
EH-Net
May 23, 2013, 11:22:40 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Linux local privilege escalation - exploit-exercises.com  (Read 2324 times)
0 Members and 1 Guest are viewing this topic.
m0wgli
Full Member
***
Offline Offline

Posts: 248


View Profile
« on: October 29, 2012, 05:36:19 PM »
A quick search didn't show this mentioned before.

Whilst reading up on local privilege escalation in Linux, I came across the following resource:

http://exploit-exercises.com/nebula

Quote
Nebula takes the participant through a variety of common (and less than common) weaknesses and vulnerabilities in Linux. It takes a look at

    SUID files
    Permissions
    Race conditions
    Shell meta-variables
    $PATH weaknesses
    Scripting language weaknesses
    Binary compilation failures

At the end of Nebula, the user will have a reasonably thorough understanding of local attacks against Linux systems, and a cursory look at some of the remote attacks that are possible.

I'm currenlty working my way through them, and have found them really useful so far.
Logged
Security + | OSWP | eCPPT | CSTA
hayabusa
Hero Member
*****
Offline Offline

Posts: 1633



View Profile
« Reply #1 on: October 29, 2012, 07:02:36 PM »
Will have to see what it's got.  Thanks for the share.
Logged
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'

OSCE, OSCP , GPEN, C|EH
Jamie.R
Sr. Member
****
Offline Offline

Posts: 429


View Profile
« Reply #2 on: October 31, 2012, 03:27:18 AM »
Thanks looks like a good resource.
Logged
OSWP | Hackingdojo Nidan | eCPPT
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.06 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Free Business and Tech Magazines and eBooks

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.