Location>code7788 >text

Linux privilege escalation guide

Popularity:929 ℃/2025-01-16 17:32:09
  • outside the containerExploitation conditions: (1) The dockerd process runs as root. 【Orderps aux | grep dockerd】(2) Users can usedocker imagesCommand to enumerate images. [Non-root users will have permission to operate docker containers as long as they join the docker group. 】(3) The dockerd process runs as root. (4) The user in the container runs as root. 【Orderdocker run --rm -it alpine sh -c "id"
  • inside the containerExploitation condition 1: (1) The current container identity is root. (2) The container isprivileged container. 【Orderfdisk -l | grep -A 10 -i "device"File systems such as /dev/sda* exist in the output results. 】
  • inside the containerExploitation condition 2: (1) The current container identity is root. (2) The containerUnprivileged container. (3) The container enables the CAP_SYS_ADMIN function. 【Ordercapsh --print | grep cap_sys_adminThere is output information. 】(3) The AppArmor function in the container is stopped or not loaded. 【Ordercat /sys/kernel/security/apparmor/profilesFile does not exist. 】
  • How to use:Reference link
  • How to get it: No need
    • <Previous Next>