Collaborate Disseminate
Sudo and Opendoas on Linux use timestamp files to keep track of how long it’s been since you’ve last entered your password. Doas on BSD uses a kernel feature instead.
Why is the latter considered more secure?
Continue reading Why is sudo’s usage of timestamp files insecure?
Sudo and Opendoas on Linux use timestamp files to keep track of how long it’s been since you’ve last entered your password. Doas on BSD uses a kernel feature instead.
Why is the latter considered more secure?
Continue reading Why is sudo’s usage of timestamp files insecure?
I need to write a simple program that demonstrates a race condition. I picked the Meltdown vulnerability.
I want to clarify something. I’m following this explanation https://resources.infosecinstitute.com/topic/race-conditions-exploitation… Continue reading Understanding the Meltdown vulnerability
Consider a scenario in which you offer service access based on a hierarchy of authority. i.e., a HEAD can register his subordinates. The authenticated HEAD has the previledge to read and update data from all of his subordinates. Is there a… Continue reading Authorise access to hierarchical data
If you plug a Razer peripheral (mouse or keyboard, I think) into a Windows 10 or 11 machine, you can use a vulnerability in the Razer Synapse software — which automatically downloads — to gain SYSTEM privileges.
It should be noted that this… Continue reading Interesting Privilege Escalation Vulnerability
If I get hit with malware while performing daily tasks (e.g. – checking email, web browsing, etc.) with a root shell, the malware will own my machine.
If the aforementioned occurs whilst on a standard account with the ability to run sudo, … Continue reading If browsing the web with root is dangerous, isn’t browsing the web with a sudo enabled account only marginally safer?
In the past, I have used the Sherlock PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.
However, I am looking for a similar script, but I struggle to find one. I thought to make one … Continue reading PowerShell – privilege escalation
By 2022, API abuses will become the most frequent attack vector, predicts Gartner. We’re already witnessing new API exploits reach the headlines on a near-daily basis. Most infamous was the Equifax breach, an attack that exposed 147 million accounts i… Continue reading For Hackers, APIs are Low-Hanging Fruit
My goal is to write in /etc/passwd to escalate privileges to root.
i generated password "test1" for the new root user : openssl passwd test1
and i use echo to append a new entry in /etc/passwd file : sudo echo "root2:rmeF3kd… Continue reading Can’t write to /etc/shadow with "echo" but with "nano" i can [migrated]
From SentinelLabs, a critical vulnerability in HP printer drivers:
Researchers have released technical details on a high-severity privilege-escalation flaw in HP printer drivers (also used by Samsung and Xerox), which impacts hundreds of millions of Windows machines.
If exploited, cyberattackers could bypass security products; install programs; view, change, encrypt or delete data; or create new accounts with more extensive user rights.
The bug (CVE-2021-3438) has lurked in systems for 16 years, researchers at SentinelOne said, but was only uncovered this year. It carries an 8.8 out of 10 rating on the CVSS scale, making it high-severity…