-
Notifications
You must be signed in to change notification settings - Fork 13.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add post/multi/recon/sudo_commands #10021
Conversation
🍝 |
Do not merge This PR is a work-in-progress and request for comments. In hindsight, it would have been easier to parse I also need to fix support for older versions of |
Updated to use The code is cleaner and this should work on every version of Module is ready for testing. |
Sample (verbose) output:
|
Very nice touch with the privesc suggestion. |
The privesc suggestion output was the sole motivation to write this module. The module lives in Unfortunately autopwn functionality was a little too complex for this module; in particular due to the potential need to move/overwrite/modify existing binaries. I may revisit this at a later date. For these reasons, an autopwn variant, which makes use of only the most reliable privesc vectors, should live in a separate The main hurdle was parsing the Submitted PR for testing. Changes to the privesc checks (in particular the list of EoP bins) and output can be easily made later. |
Removing the delayed tag. I'll write the documentation once the module is tested and verified working by a third party. |
I uncommented a bunch of stuff in my
Works for me. |
@wvu-r7 Cool. I've added docs. |
I'll give this another test and a read-over of the docs, then I'll get it landed. This is a really strong contribution! |
Release NotesThis adds the |
Add
post/multi/recon/sudo_commands
.Verification
msfconsole
use post/multi/recon/sudo_commands
set SESSION <ID>
run
Tested on:
SUDO_PATH
to be changed to/usr/bin/local/sudo
)Example Output