Polish clarification about SUID binaries

This commit is contained in:
Emilio 2020-01-07 19:50:38 +00:00 committed by GitHub
parent 6baf0c2d0e
commit 55409b238c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -24,8 +24,8 @@ layout: common
{% capture code %} {% capture code %}
{%- if function_id == 'suid' or function_id == 'limited-suid' %} {%- if function_id == 'suid' or function_id == 'limited-suid' %}
# create a local SUID copy of the binary for the sake of the example # This example creates a local SUID copy of the binary and runs it to maintain elevated privileges.
# in a real world scenario ignore this line and use the proper path below # To exploit an existing SUID binary instead, skip the following command and run it using its full path.
sudo sh -c 'cp $(which {{ bin_name }}) .; chmod +s ./{{ bin_name }}' sudo sh -c 'cp $(which {{ bin_name }}) .; chmod +s ./{{ bin_name }}'
{% endif %} {% endif %}
{%- if function_id == 'capabilities' %} {%- if function_id == 'capabilities' %}