Apache2 method

🔥FREE VERSION — Click here for free article… 🔥

If you’ve been around in the hacking scene for any period of time, then you’ve most likely heard of GTFObins. GTFObins is a collection of privilege escalation vectors commonly used in Linux systems.

I’m going to go over a common one, and then I’ll show you one that you may not know about, or do not show up on the GTFObins site but can still be used against many Linux systems.

Let’s examine a common GTFObin / privesc vector using vim:

Here we see that can can potentially execute the following command (given that we can successfully use sudo vim as the current user) and potentially escalate our privileges. Let’s try it out.

user@debian:~$ sudo -l
Matching Defaults entries for user on this host:
    env_reset, env_keep+=LD_PRELOAD…