darnellkeith/PEASS-ng
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,725 Commits 14 Branches 285 Tags 63 MiB
88f08a405e
Commit Graph

240 Commits

Author SHA1 Message Date
Carlos Polop
7a9ea40cbb Less false possitives applied to small names 2024-09-24 11:49:57 +02:00
Carlos Polop
faf6be53a8 added new suids cves 2024-09-23 15:00:23 +02:00
Carlos Polop
83f18f891f add CVE-2021-4034 2024-09-23 14:57:12 +02:00
Carlos Polop
d9f6e3eb46 fix issue 435 2024-09-23 14:36:50 +02:00
Carlos Polop
cb39091bfa curl follow redirects 2024-09-19 11:57:19 +02:00
Jeffrey Bencteux
f881a4719d
Update USEFUL_SOFTWARE.sh 
add lua and go binaries as it serves to escape restricted environments.
 2024-09-03 15:14:35 +02:00
Carlos Polop
0ed01d58d3 Big linpeas update 2024-08-27 23:56:21 +02:00
Gary Corrall
d8f86e81b2 Fix 'find possible conf files with passwords' in 9_interesting_files.sh 2024-04-11 14:54:27 +01:00
cp
a2fb2cd2be
Update 3_cloud.sh 2024-04-08 11:31:00 +02:00
shadowabi
751d61b27f
Update 3_cloud.sh 
Delete the condition that Tencent Cloud detection is liable to cause false positives
 2024-04-08 14:41:46 +08:00
Carlos Polop
c37db4654c peass-ng 2024-04-04 11:30:56 +02:00
Carlos Polop
aee8acf60f
Update 3_cloud.sh 2024-02-26 20:40:36 +01:00
Carlos Polop
a79fb7f5d5
Update 3_cloud.sh 2024-02-25 20:50:25 +01:00
Carlos Polop
c4e858d226 cloud functions 2024-02-21 16:39:46 +01:00
shadowabi
2f687dde18
Update 3_cloud.sh 
Fixed an error and added an auxiliary judgment
 2024-02-16 00:46:58 +08:00
shadowabi
2d68186677
Format alignment 2024-01-25 11:58:51 +08:00
shadowabi
177fe211d0
Update 3_cloud.sh 2024-01-25 11:55:34 +08:00
shadowabi
9960d4780f
Add files via upload 2024-01-25 11:52:11 +08:00
shadowabi
4260e06722
add Tencent CVM metadata search 2024-01-25 11:49:20 +08:00
Carlos Polop
398081451f
Merge pull request #407 from Esonhugh/master 
linpeas Cloud.sh: support of Alibaba Cloud Enumeration
 2024-01-24 18:13:22 +01:00
Esonhugh
edd8e3a397
feat: instance name and type 2024-01-22 22:04:21 +08:00
Esonhugh
7daefe700f
update: bug of req var error 2024-01-22 21:49:22 +08:00
Esonhugh
0c5b8194d3
format: better format of aliyun network print 2024-01-22 21:46:12 +08:00
Esonhugh
74ccf2c08a
fix: missing do at the of for 2024-01-22 21:39:41 +08:00
Esonhugh
9865e2a5b0
feat: aliyun network enumeration 2024-01-22 21:32:48 +08:00
Esonhugh
a8b7084b3e
feat: aliyun cloud support [incomplete] 2024-01-22 21:07:32 +08:00
mcdruid
5c4f81d0d4 fix typo in 'run unshare' container check 2024-01-16 16:11:42 +00:00
Carlos Polop
05f6cb7b0a
Update 9_interesting_files.sh 2023-10-02 23:54:28 +02:00
Carlos Polop
f99387feed
Update linpeas_base.sh 2023-08-18 13:19:53 +02:00
Carlos Polop
eddc6726e0
Update 1_system_information.sh 2023-08-07 08:35:15 +02:00
Carlos Polop
9861259bca
Merge pull request #375 from galoget/master 
Fix typos, grammar and spacing
 2023-07-31 16:56:43 +02:00
galoget
41e2367be6
Update linpeas_builder.py 
Standardize spacing in comments.
 2023-07-25 12:22:14 -05:00
galoget
5e41f694e2
Update linpeas_base.sh 
Standardize spacing in comments.
 2023-07-25 12:21:36 -05:00
galoget
5e8def70d1
Update 9_interesting_files.sh 
Standardize spacing in comments
 2023-07-25 12:16:03 -05:00
galoget
f441212026
Update 8_interesting_perms_files.sh 
Standardize spacing in comments
 2023-07-25 12:13:37 -05:00
galoget
337f210bb9
Update 7_software_information.sh 
Fix typos and spacing
 2023-07-25 12:11:09 -05:00
galoget
d63f11bc53
Update 3_cloud.sh (Typos) 
Fix typos, spacing and added comments.
 2023-07-25 11:58:47 -05:00
galoget
210abd9329
Update 2_container.sh (Fix typo) 
Fix typo and spacing.
 2023-07-25 11:48:55 -05:00
kali.kali
be912ad77e Wrap 'nosh_usrs' user names in word boundaries to prevent false positives when such names are substrings of other strings 2023-07-24 20:06:47 -04:00
galoget
44a3cce5c7
Update 2_container.sh (Fix broken links) 
Update script 2_container.sh to fix broken links to Kubernetes Pentesting.
 2023-07-24 11:03:05 -05:00
galoget
965ca0868a
Update 3_cloud.sh (Fix broken link) 
Update script 3_cloud.sh to fix a broken link to GCP Pentesting.
 2023-07-24 10:55:35 -05:00
carlospolop
1279434ba6 Merge branch 'aicoder' of https://github.com/carlospolop/PEASS-ng into aicoder 2023-07-24 10:23:18 +02:00
Nicolas GRELLETY
509e164d6f
🐛 fix linPEAS build 
Update search regex due to API change
 2023-07-23 00:49:04 +02:00
carlospolop
099755dbcb actions 2023-07-02 15:45:35 +02:00
camercu
7f4965c0b7 fix su brute check. 
Added Usage help message to indicate '-a' invokes all checks.
Removed 'sudo' exists check, replaced with appropriate 'su' check.
 2023-06-11 10:45:51 -05:00
carlospolop
898b29b0fa f 2023-06-01 00:16:51 +02:00
Antoine SANSON
e4b9ae6479 Fix LES regex 2023-05-15 14:31:13 +02:00
Carlos Polop
7b096cd930
Update linpeas_base.sh 2023-05-10 16:03:11 +02:00
Carlos Polop
a9ae25cdc3
Update 3_cloud.sh 2023-05-10 16:02:43 +02:00
wonda-tea-coffee
a36c2c9107 fix command not found error 
The following error occurred when evaluating the expression because the space that should have been a space was U+0a00.

```
./linpeas.sh: 3672: ./linpeas.sh:  [: not found
```
 2023-05-08 19:22:22 +09:00
wonda-tea-coffee
d20699ed51 fix hacktricks link 2023-04-28 00:13:16 +09:00
carlospolop
62e4b071cd Merge branch 'master' of https://github.com/carlospolop/PEASS-ng 2023-04-13 22:02:56 +02:00
carlospolop
4a0b8fb065 improvements 2023-04-13 22:02:50 +02:00
Carlos Polop
4ba0f6b6c2
Update 1_system_information.sh 2023-04-13 20:30:33 +02:00
carlospolop
144c0aef6f push 2023-04-13 16:10:26 +02:00
carlospolop
613bf14049 container 2023-04-13 15:44:57 +02:00
carlospolop
19a2ed5f5a linpeas improvements 2023-04-13 06:00:26 +02:00
Carlos Polop
0682cafe08
Update linpeas_base.sh 2023-03-29 17:23:14 +02:00
KeoOp
7b9bf9cf91
Fix a bug of finding readable file in sudoers.d 
Fix a bug of finding user readable file in /etc/sudoers.d
```
for filename in /etc/sudoers.d/*; do
    echo $filename  # filename is a array
done
```

```
for filename in '/etc/sudoers.d/*'; do
    echo $filename  # filename is a single long string
done
```
 2023-03-08 16:37:32 +08:00
Al Longley
aa69a494b4 Check "doas.conf" based on binary existence, not config 2022-12-31 18:43:14 +11:00
Carlos Polop
a4b226c16e
Update linpeas_base.sh 2022-12-31 00:58:00 +01:00
Arnim Rupp
0ab4a65bab Update 1_system_information.sh 
Fix false positive, Ubuntu fixed it one day earlier:

policykit-1 (0.105-20ubuntu0.18.04.6) bionic-security; urgency=medium

  * SECURITY UPDATE: Local Privilege Escalation in pkexec
    - debian/patches/CVE-2021-4034.patch: properly handle command-line
      arguments in src/programs/pkcheck.c, src/programs/pkexec.c.
    - CVE-2021-4034

 -- Marc Deslauriers <email address hidden>  Wed, 12 Jan 2022 07:34:00 -0500
 2022-11-21 15:17:28 +01:00
Carlos Polop
940b4bc791
Update 2_container.sh 2022-09-30 13:48:06 +02:00
lu-ka
cb3e62a3ff added CVE-2022-2588; reduced color to red 2022-09-20 19:26:56 +02:00
Carlos Polop
eaac654739
Update linpeas_base.sh 2022-09-01 20:17:07 +02:00
carlospolop
8b444ba674 10k update 2022-09-01 20:08:01 +02:00
Carlos Polop
a5ca003383
Merge pull request #307 from z0ug/patch-1 
Update 2_container.sh
 2022-08-20 21:22:19 +02:00
z0ug
98e2318838
Update 1_system_information.sh 2022-08-20 20:01:18 +02:00
z0ug
27bc0ba5cc
Update 1_system_information.sh 
Missing test makes false positive
 2022-08-20 19:55:24 +02:00
z0ug
2f7d8ea583
Update 2_container.sh 
Typo in release_agent_breakout2 variable name
 2022-08-20 19:42:48 +02:00
Carlos Polop
5fa0e76b69
Update linpeas_base.sh 2022-07-31 00:29:32 +02:00
carlospolop
999fcff035 linpeas update 2022-07-30 12:14:53 +02:00
Carlos Polop
fa0f2e17fb
Update 7_interesting_files.sh 2022-05-11 21:13:18 +01:00
Carlos Polop
f8e0090962
Update 6_software_information.sh 2022-05-11 21:09:43 +01:00
Carlos Polop
10960f2456
Update linpeas_base.sh 2022-05-11 20:36:51 +01:00
Carlos Polop
0c9bee903a
Update 4_network_information.sh 2022-05-11 20:25:37 +01:00
Carlos Polop
7f2b14d8d7
Update 1_system_information.sh 2022-05-11 20:23:27 +01:00
Carlos Polop
0a41095a1b
Update 6_software_information.sh 2022-05-09 12:13:07 +01:00
carlospolop
585fcc33b2 change url 2022-05-01 17:43:55 +01:00
Carlos Polop
3b764452b5
Update linpeas_base.sh 2022-04-08 23:53:42 +01:00
Carlos Polop
6536042afd
Update linpeas_base.sh 2022-04-01 10:58:42 +01:00
Carlos Polop
d17e4dcca7
Update 1_system_information.sh 2022-03-28 17:31:07 +01:00
Carlos Polop
a928340752
Update 3_procs_crons_timers_srvcs_sockets.sh 2022-03-28 10:21:49 +01:00
carlospolop
b3eefad3fe check /opt 2022-03-14 16:30:44 -04:00
carlospolop
cf947f01c7 CVE-2022-0847 2022-03-10 05:34:15 -05:00
lu|ka
ee80f8d97a
Added check for CVE-2022-0847 
See https://dirtypipe.cm4all.com/
 2022-03-08 10:32:25 +01:00
Carlos Polop
7f3e4c440d
Update 1_system_information.sh 2022-03-07 23:33:54 +00:00
Carlos Polop
1209890aa9
Update 6_software_information.sh 2022-03-07 23:19:23 +00:00
Carlos Polop
820e12f1ed
Merge pull request #278 from carlospolop/linpeas_dev 
Merge pull request #277 from julienbordet/linpeas_dev
 2022-03-07 23:18:03 +00:00
Julien Bordet
073114db86 SIngle quotes in this line prevent '*' from being expanded 
Right now this section for sudoers.d does not work
 2022-03-08 00:11:27 +01:00
Carlos Polop
b6bf6a702a
Update 1_system_information.sh 2022-03-07 11:23:37 +00:00
Jan Roring
dd122b2f10 Fixed typo that caused linux-exploit-suggester results not being displayed 2022-03-02 17:47:14 +01:00
Carlos Polop
a89f235c43
Update linpeas_base.sh 2022-02-13 17:00:40 +00:00
secnigma
dc7c9db7dd
Improved CVE-2021-3560 Check 
* Swapped `yum ` for `rpm ` for improved compatibility 
* Added known vulnerable version of Polkit
 2022-02-11 13:23:50 -05:00
Carlos Polop
48ff8b061b
Update 1_system_information.sh 2022-02-09 12:02:26 +00:00
Carlos Polop
0a4df51b06
Update 1_system_information.sh 2022-02-05 19:56:14 +00:00
Kevin Pham
52c2a1e11b
fix typo 
fix typo
 2022-02-02 21:32:43 -08:00
Kevin Pham
f3495c48e9
Update 1_system_information.sh 
More robust implementation of pkexec binary modification time check with integer comparison instead of date regex grep.

1642035600 == Thursday, January 13, 2022 1:00:00 AM
Which is when it was first patched. We have to check this way because the polkit version number is the same, patched & unpatched.
 2022-02-02 21:30:43 -08:00
Carlos Polop
db89a779ad
Update 1_system_information.sh 2022-02-01 16:21:36 +00:00
Carlos Polop
77cc22a657
Update 1_system_information.sh 2022-01-31 13:21:10 +00:00