CSbyGB - Pentips

CS By GB - PenTips
- Welcome to CSbyGB's Pentips
Networking, Protocols and Network pentest
- Basics
- DNS
- FTP
- HTTP & HTTPS
- IMAP
- IPMI
- MSSQL
- MYSQL
- NFS
- Oracle TNS
- POP3
- RDP
- RPC
- Rservices
- Rsync
- SMB
- SMTP
- SNMP
- SSH
- Winrm
- WMI
Ethical Hacking - General Methodology
External Pentest
- External Pentest
Web Pentesting
Mobile App Pentest
- Android
- IOS
Wireless Pentest
- Wireless pentest
Cloud Pentest
Thick Client Pentest
- Thick Client
Hardware Pentest
- ATM
- IoT
Secure Code Review
- Secure code review
- Java notes for Secure Code Review
AI Pentest
Checklist
Tools
VM and Labs
- General tips
- Setup your pentest lab
Linux
Windows
Programming
Binary Exploitation
OSINT
Pentester hardware toolbox
Post Exploitation
Reporting
- How to report your findings
Red Team
Writeups
Digital skills
Durable skills
- Durable skills wheel/Roue des compétences durables
Projects
- Projects
  - Technical Projects
  - General Projects
Talks
Resources
- A list of random resources

Powered by GitBook

On this page

What is a kernel
How to privesc via kernel exploit
Enumerate
Dirty Cow

Kernel Exploits

PreviousPrivilege Escalation NextPassword and file permission

Last updated 2 years ago

What is a kernel

See the definition on Wikiedia
A list of Kernel Exploits

How to privesc via kernel exploit

Enumerate

uname -a or cat /etc/lsb-release
We can then google the version we get and see if anything comes out
We can also use Linux exploit suggester and investigate the results

Dirty Cow

We can use this exploit
gcc -pthread cow.c -o cow -lcrypt
passwd should let us be root

We are a low privilege user for now

./cow