Merge pull request #307 from z0ug/patch-1

Update 2_container.sh
Merge pull request #308 from z0ug/patch-2
2025-12-15 21:09:02 +00:00 · 2022-08-20 21:22:19 +02:00 · 2022-08-20 21:21:25 +02:00 · 2022-08-20 20:01:18 +02:00 · 2022-08-20 19:55:24 +02:00 · 2022-08-20 19:42:48 +02:00
4 changed files with 5 additions and 5 deletions
--- a/linPEAS/builder/linpeas_parts/1_system_information.sh
+++ b/linPEAS/builder/linpeas_parts/1_system_information.sh
@@ -32,7 +32,7 @@ fi

 #-- SY) CVE-2021-3560
 polkitVersion=$(systemctl status polkit.service 2>/dev/null | grep version | cut -d " " -f 9)
-if [ "$(apt list --installed 2>/dev/null | grep polkit | grep -c 0.105-26)" -ge 1 ] || [ "$(yum list installed 2>/dev/null | grep polkit | grep -c 0.117-2)" ]; then
+if [ "$(apt list --installed 2>/dev/null | grep polkit | grep -c 0.105-26)" -ge 1 ] || [ "$(yum list installed 2>/dev/null | grep polkit | grep -c 0.117-2)" -ge 1 ]; then
    echo "Vulnerable to CVE-2021-3560" | sed -${E} "s,.*,${SED_RED_YELLOW},"
    echo ""
 fi
--- a/linPEAS/builder/linpeas_parts/2_container.sh
+++ b/linPEAS/builder/linpeas_parts/2_container.sh
@@ -142,7 +142,7 @@ checkProcSysBreakouts(){
  
  mkdir /tmp/cgroup_3628d4
  mount -t cgroup -o memory cgroup /tmp/cgroup_3628d4 2>/dev/null
-  if [ $? -eq 0 ]; then release_agent_breakout12="Yes"; else release_agent_breakout2="No"; fi
+  if [ $? -eq 0 ]; then release_agent_breakout2="Yes"; else release_agent_breakout2="No"; fi
  rm -rf /tmp/cgroup_3628d4 2>/dev/null
  
  core_pattern_breakout="$( (echo -n '' > /proc/sys/kernel/core_pattern && echo Yes) 2>/dev/null || echo No)"
--- a/linPEAS/builder/linpeas_parts/linpeas_base.sh
+++ b/linPEAS/builder/linpeas_parts/linpeas_base.sh
@@ -826,8 +826,8 @@ tcp_recon (){
  for port in $PORTS; do
    for j in $(seq 1 254)
    do
-      if [ "$FOUND_BASH" ]; then
-        $FOUND_BASH -c "(echo </dev/tcp/$IP3.$j/$port) 2>/dev/null && echo -e \"\n[+] Open port at: $IP3.$j:$port\"" &
+      if [ "$FOUND_BASH" ] && [ "$$TIMEOUT" ]; then
+        $TIMEOUT 5 $FOUND_BASH -c "(echo </dev/tcp/$IP3.$j/$port) 2>/dev/null && echo -e \"\n[+] Open port at: $IP3.$j:$port\"" &
      elif [ "$NC_SCAN" ]; then
        ($NC_SCAN "$IP3"."$j" "$port" 2>&1 | grep -iv "Connection refused\|No route\|Version\|bytes\| out" | sed -${E} "s,[0-9\.],${SED_RED},g") &
      fi
--- a/winPEAS/winPEASexe/winPEAS/Checks/SystemInfo.cs
+++ b/winPEAS/winPEASexe/winPEAS/Checks/SystemInfo.cs
@@ -598,7 +598,7 @@ namespace winPEAS.Checks
                if (Checks.CurrentAdDomainName.Length > 0)
                {
                    Beaprint.BadPrint("  The system is inside a domain (" + Checks.CurrentAdDomainName + ") so it could be vulnerable.");
-                    Beaprint.InfoPrint("You can try https://github.com/DecOne/KrbRelayUp to escalate privileges");
+                    Beaprint.InfoPrint("You can try https://github.com/Dec0ne/KrbRelayUp to escalate privileges");
                }
                else
                {
Author	SHA1	Message	Date
Carlos Polop	a5ca003383	Merge pull request #307 from z0ug/patch-1 Update 2_container.sh	2022-08-20 21:22:19 +02:00
Carlos Polop	502e561445	Merge pull request #308 from z0ug/patch-2 Update 1_system_information.sh	2022-08-20 21:21:25 +02:00
z0ug	98e2318838	Update 1_system_information.sh	2022-08-20 20:01:18 +02:00
z0ug	27bc0ba5cc	Update 1_system_information.sh Missing test makes false positive	2022-08-20 19:55:24 +02:00
z0ug	2f7d8ea583	Update 2_container.sh Typo in release_agent_breakout2 variable name	2022-08-20 19:42:48 +02:00
Carlos Polop	f1f321be44	Merge pull request #304 from Reelix/patch-1 Fixed a broken Github link	2022-08-09 12:09:03 +02:00
Reelix	dec10cded1	Fix a broken Github link - Fixed a typo in the KrbRelayUp Github link	2022-07-31 20:16:54 +02:00
Carlos Polop	5fa0e76b69	Update linpeas_base.sh	2022-07-31 00:29:32 +02:00