Tools

Linpeas

PEASS-ng/linPEAS at master · peass-ng/PEASS-ngGitHub

wget "https://github.com/carlospolop/PEASS-ng/releases/latest/download/linpeas.sh" -O linpeas.sh
curl "https://github.com/carlospolop/PEASS-ng/releases/latest/download/linpeas.sh" -o linpeas.sh
./linpeas.sh -a #all checks - deeper system enumeration, but it takes longer to complete../linpeas.sh -s #superfast & stealth - This will bypass some time consuming checks. In stealth mode Nothing will be written to the disk../linpeas.sh -P #Password - Pass a password that will be used with sudo -l and bruteforcing other users

Linux Smart Enumeration

GitHub - diego-treitos/linux-smart-enumeration: Linux enumeration tool for pentesting and CTFs with verbosity levelsGitHub

wget "https://raw.githubusercontent.com/diego-treitos/linux-smart-enumeration/master/lse.sh" -O lse.shcurl "https://raw.githubusercontent.com/diego-treitos/linux-smart-enumeration/master/lse.sh" -o lse.sh./lse.sh -l1 # shows interesting information that should help you to privesc./lse.sh -l2 # dump all the information it gathers about the system

LinEnum

GitHub - rebootuser/LinEnum: Scripted Local Linux Enumeration & Privilege Escalation ChecksGitHub

./LinEnum.sh -s -k keyword -r report -e /tmp/ -t

Other linux enumeration tools

• BeRoot - Privilege Escalation Project - Windows / Linux / Mac

• linuxprivchecker.py - a Linux Privilege Escalation Check Script

• unix-privesc-check - Automatically exported from code.google.com/p/unix-privesc-check

• Privilege Escalation through sudo - Linux