Exploit access() with Symlinks
About access() The access() system call checks the accessibility of the file specified in pathname based on a process’s real […]
MySql User-Defined Function (UDF) Privilege Escalation (Windows & Linux)
We will get in to making our own functions in later posts but for now the UDF compiled shared objects […]
Multi User Escalation III linux-privilege-escalation | Level: Easy
The Challenge So you’ve got a foothold on a regular user account on a Linux box? You’ve tried to escalate […]
Escape Jailed (S)HELL
Enumerate Check what commands you can use Check for piping and redirection operators Check for available languages No password sudo […]
The Golden Logs | linux-privilege-escalation from attackdefence.com labs | Level: Intermediate
The Challenge A running Linux server is a complicated beast with dozens of things happening in the background. Admins might […]
Restricted Shell linux -privilege-escalation | https://attackdefense.com Level: Hard
The Challenge It is very common on multi-user systems to restrict the functionality available to individual users. A common way […]
The Golden Logs II
This challenge was odd, it said easy yet took me longer than the hard one, why? Because I over thought […]
Shared Library Injection
Look’s like I am first again to do a write-up for these challenges in the attackdefense.com intermediate and hard categories. […]
LD_PRELOAD Injection
This is the first write up I could find online for Linux Priv Esc, Load Order Matters, if that’s true […]
Linux Privilege Escalation
They say enumeration is everything but I was sick of being told to use 3 different enum scripts so I […]