HackTricks News Bot
ed01b32a95
Add linpeas privilege escalation checks from: Case study: Backup leak → CI abuse → internal trust misconfigurations → escalati
2025-08-27 19:45:02 +00:00
SirBroccoli
cc5ab76991
Merge pull request #486 from soobinrho/fix-typo-on-color-explanations
...
docs: fix typo (conten -> content)
2025-08-27 12:12:28 +02:00
carlospolop
36001d644e
Merge branch 'master' of github.com:peass-ng/PEASS-ng
2025-08-25 11:18:18 +02:00
carlospolop
fdd414f4aa
new workflow
2025-08-25 11:18:16 +02:00
Soobin Rho
c3e50dbdbf
docs: fix typo (conten -> content)
2025-08-08 17:56:41 -05:00
SirBroccoli
41128808a6
Merge pull request #483 from securitytime/patch-1
...
Update Beaprint.cs
2025-07-01 16:23:13 +02:00
carlospolop
6fd96f4bdb
f
2025-07-01 12:12:01 +02:00
carlospolop
a745f00dd7
fix
2025-07-01 11:10:21 +02:00
securitytime
933e12d7f1
Update Beaprint.cs
...
A space character is missing here:
"... educational purposes only.Any misuse of this software ..."
2025-06-28 09:12:40 +02:00
SirBroccoli
4061cef7e8
Merge pull request #476 from peass-ng/codex/fix-url-reference-in-linpeasbuilder.py
...
Fix url variable reference in linpeasBuilder
2025-06-25 01:59:43 +02:00
SirBroccoli
b66ced3c63
Merge pull request #475 from peass-ng/codex/find-and-fix-a-bug
...
Fix parser global state reuse
2025-06-25 01:59:03 +02:00
SirBroccoli
cde725dacc
Merge pull request #477 from peass-ng/codex/update-docstring-and-fix-typo
...
Fix docstring and comment in linpeasBuilder
2025-06-25 01:57:58 +02:00
SirBroccoli
f0f829890c
Merge pull request #479 from peass-ng/codex/replace--parth--with--path--in-argparse
...
Fix typo in linpeas builder arg help
2025-06-25 01:57:11 +02:00
SirBroccoli
99c36b8562
Merge pull request #480 from Signum21/master
...
Fixed multiple bugs in Vulnerable Leaked Handlers
2025-06-25 01:56:58 +02:00
SirBroccoli
a74c6c820f
Merge pull request #482 from Aarav-Juneja/builder-exclude-fix
...
Fix exclude modules on linPEASS
2025-06-25 01:55:48 +02:00
SirBroccoli
53fd4d8dc8
Merge pull request #481 from ertaku12/master
...
Added a privilege escalation vulnerability for MySQL 4.x/5.x versions.
2025-06-25 01:55:25 +02:00
Aarav Juneja
9b37fd4ef4
Fix exclude modules on linPEASS
2025-06-24 13:05:10 -07:00
John Doe
f27b1d4816
Added a privilege escalation vulnerability for MySQL 4.x/5.x versions.
2025-06-23 22:37:44 +03:00
Signum21
d335b9254f
Fixed multiple bugs in Vulnerable Leaked Handlers
2025-06-15 20:59:20 +02:00
SirBroccoli
d5e3c2a885
Fix typo in linpeas builder output argument
2025-06-06 00:38:05 +02:00
SirBroccoli
4af321d138
Fix docstring and comment typo
2025-06-06 00:01:29 +02:00
SirBroccoli
4e556fd594
Fix variable reference when parsing URLs
2025-06-06 00:01:17 +02:00
SirBroccoli
39066f6867
Fix leftover debug code and reset state in parser
2025-06-06 00:00:39 +02:00
SirBroccoli
c3a93a57fe
Merge pull request #473 from Signum21/master
...
Fix IdentityNotMappedException in Vulnerable Leaked Handlers
2025-05-31 22:36:49 +02:00
Signum21
f62d9fc550
Fix System.Security.Principal.IdentityNotMappedException in Vulnerable Leaked Handlers
2025-05-31 04:56:14 +02:00
SirBroccoli
11e9b8dde6
Merge pull request #472 from Jack-Vaughn/NoEnvVars-Update
...
Add 4 noisy environment variables to NoEnvVars.sh
2025-05-26 23:57:40 +02:00
Jack Vaughn
b9a9ad5ddf
Add 4 noisy and useless environment variables to NoEnvVars.sh
...
These variables (^PATH=|^INVOCATION_ID=|^WATCHDOG_PID=|^LISTEN_PID=) frequently appear across processes
on busy systems (10+ each on tested system) and produce a large volume of irrelevant output
2025-05-25 21:32:51 -04:00
carlospolop
88f08a405e
l
2025-05-26 02:55:07 +02:00
SirBroccoli
322792c4ec
Merge pull request #471 from Jack-Vaughn/environ-check
...
Add module to check for sensitive environment variables via /proc/*/environ
2025-05-26 02:33:43 +02:00
Jack
c150e63b52
This module scans /proc/*/environ for potentially sensitive environment variables on Linux systems.
...
It targets common keywords like token, password, secret, AWS, API, etc.
Uses 'tr' instead of 'strings' to improve compatibility in minimal environments like containers.
The check is skipped entirely on MacPEAS.
2025-05-25 12:55:34 -04:00
carlospolop
7b8dcfbe8d
f
2025-05-25 08:17:07 +02:00
carlospolop
aac3667247
f l
2025-05-25 08:15:48 +02:00
carlospolop
64ab193d25
f linpeas
2025-05-25 07:05:48 +02:00
carlospolop
aab8241ede
f
2025-05-25 02:21:39 +02:00
carlospolop
65b98d11ac
only print errors when relevant
2025-05-25 02:10:07 +02:00
carlospolop
1e72dbeb76
impr winpeas networking checks
2025-05-25 01:46:30 +02:00
carlospolop
c9282b4bdb
fix winpeas?
2025-05-25 01:37:03 +02:00
carlospolop
b91334e5b3
fix
2025-05-24 23:37:00 +02:00
carlospolop
b7bc20a027
improvement
2025-05-24 23:31:12 +02:00
carlospolop
4fbe6ffd79
winpeas networkinfo test ci/cd
2025-05-24 23:16:31 +02:00
carlospolop
c288f3a810
fw
2025-05-24 23:05:13 +02:00
carlospolop
f3e29a509f
fix winpeas
2025-05-24 23:02:18 +02:00
carlospolop
c29fc553b5
Merge branch 'master' of github.com:peass-ng/PEASS-ng
2025-05-24 08:30:12 +02:00
carlospolop
1e7a90d29f
cursor rewrite + network checks
2025-05-24 08:29:47 +02:00
SirBroccoli
5a5d44f393
Merge pull request #470 from Signum21/master
...
WinPeas: Differentiate between Allow ACLs and Deny ACLs
2025-05-21 07:06:46 +02:00
Signum21
368f0af794
WinPeas: Differentiate between Allow ACLs and Deny ACLs
...
Works for files, folders, registry keys and named pipes
2025-05-21 03:33:33 +02:00
carlospolop
604580adbd
more
2025-05-19 06:36:39 +02:00
carlospolop
9820c18697
Cursor improvements parts 1 and 2
2025-05-19 06:36:35 +02:00
carlospolop
ea9b930fdb
fix capabilities module
2025-05-18 14:33:02 +02:00
SirBroccoli
dae0f7a533
Merge pull request #468 from ThatTotallyRealMyth/ThatTotallyRealMyth-4_capEdit-1
...
Update 4_Capabilities.sh: Fix capability decoding to prevent shell breaking output from shell/process capabiltiy checking.
2025-05-18 14:19:28 +02:00
