RootHelper
Roothelper will aid in the process of privilege escalation on a Linux system that has been compromised, by fetching a number of enumeration and exploit suggestion scripts. The latest version downloads four scripts. Two enumeration shellscripts and two exploit suggests, one written in perl and the other one in python.
The credits for the scripts it fetches go to the original authors.
Priv-Esc scripts
LinEnum - Shellscript that enumerates the system configuration.
unix-privesc-check - Shellscript that enumerates the system configuration and runs some privilege escalation checks as well.
linuxprivchecker - A python implementation to suggest exploits particular to the system that's been compromised.
Linux_Exploit_Suggester - A perl script that that does the same as the one mentioned above.
Usage
To use the script you will need to get it on the system you've compromised, from there you can simply run it and it will show you the options available and an informational message regarding the options. For clarity I will post it below as well.
The 'Help' option displays this informational message.
The 'Download' option fetches the relevant files and places them in the /tmp/ directory.
The option 'Download and unzip' downloads all files and extracts the contents of zip archives to their individual sub-directories respectively, please note; if the 'mkdir' command is unavailable however, the operation will not succeed and the 'Download' option should be used instead
The 'Clean up' option removes all downloaded files and 'Quit' exits roothelper.
The 'Download' option fetches the relevant files and places them in the /tmp/ directory.
The option 'Download and unzip' downloads all files and extracts the contents of zip archives to their individual sub-directories respectively, please note; if the 'mkdir' command is unavailable however, the operation will not succeed and the 'Download' option should be used instead
The 'Clean up' option removes all downloaded files and 'Quit' exits roothelper.
Credits for the other scripts go to their original authors.
To check your privilege on the Linux machine : Download Now
No comments:
Post a Comment