This repository contains a tool to parse complex sudoers configurations, highlighting possible security misconfigurations.
To use this tool:
./sudo-parse.pl -f /path/to/sudoers
More complicated uses are also possible. For example, to use it to drive t0thkr1s's gtfo:
./sudo-parser.pl -f /etc/sudoers | grep "E:" | grep -v "ALL" | cut -f 2 -d " " | cut -f 2 -d: | while read commandname
do
./gtfo.py "$(basename "${commandname}")"
done
For any queries about the contents of this repository please contact Security Advisory EMEAR.