SSH Agent Hijacking
Learn how SSH Agent Hijacking works, techniques to abuse active SSH sessions, privilege escalation, and how to compromise remote servers through SSH sockets.
Dec 3, 2024 Juan Antonio González Mena
Linux
14 articles
Kali Linux on Windows Without Installation or Administrator Privileges with Qemu
Learn how to run Kali Linux on Windows without needing administrator privileges or installation using Qemu as a portable emulator.
Nov 12, 2024 Juan Antonio González Mena
Kali Linux on Docker
Complete guide to install and manage Kali Linux on Docker. Learn to configure the environment, tunnel traffic through Burp Suite, and manage containers.
Jun 5, 2023 Juan Antonio González Mena
Linux Privilege Escalation via Cron Jobs
Learn to identify and exploit misconfigurations in Linux Cron Jobs to escalate privileges through weak permissions, PATH, and wildcards.
Oct 26, 2022 Andrés González
Linux Privilege Escalation Through Incorrect Permissions
Complete guide on Linux privilege escalation by exploiting incorrect permissions on critical files like /etc/shadow, /etc/passwd, and /etc/sudoers.
Aug 29, 2022 Juan Antonio González Mena
SGID, SUID, and Sticky Bit Permissions on Linux
Complete guide to special permissions on Linux: SGID, SUID, and Sticky Bit. Learn how they work, how to identify them, and the behaviors of UID and GID in the system.
Jan 17, 2022 Juan Antonio González Mena
How to Exploit Path Hijacking and Library Hijacking
Explanation of Path Hijacking and Library Hijacking privilege escalation techniques on Linux, how to exploit them through PATH manipulation, and practical examples with SUID permissions and sudo.
Nov 10, 2021 Juan Antonio González Mena
How to Configure IP Forwarding on Linux
Practical guide to configure a Linux system as a router using IP Forwarding and static routes with ip route
Nov 6, 2021 Juan Antonio González Mena
How to Do Pivoting with Sshuttle
Practical guide on how to use Sshuttle to perform pivoting by simulating a VPN through SSH connections between different networks.
Nov 5, 2021 Juan Antonio González Mena