β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 Hex editors :
π¦ HxD - A hex editor which, additionally to raw disk editing and modifying of main memory (RAM), handles files of any size
π¦ WinHex - A hexadecimal editor, helpful in the realm of computer forensics, data recovery, low-level data processing, and IT security
π¦ wxHexEditor
π¦ Synalize It/Hexinator -
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 Hex editors :
π¦ HxD - A hex editor which, additionally to raw disk editing and modifying of main memory (RAM), handles files of any size
π¦ WinHex - A hexadecimal editor, helpful in the realm of computer forensics, data recovery, low-level data processing, and IT security
π¦ wxHexEditor
π¦ Synalize It/Hexinator -
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
mh-nexus.de
HxD - Freeware Hex Editor and Disk Editor | mh-nexus
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
USEFULL TOOLS FOR PRO HACKERS :
π¦ Binwalk - Detects signatures, unpacks archives, visualizes entropy.
π¦ Veles - a visualizer for statistical properties of blobs.
π¦ Kaitai Struct - a DSL for creating parsers in a variety of programming languages. The Web IDE is particulary useful fir reverse-engineering.
π¦ Protobuf inspector
π¦ DarunGrim - executable differ.
π¦ DBeaver - a DB editor.
π¦ Dependencies - a FOSS replacement to Dependency Walker.
π¦ PEview - A quick and easy way to view the structure and content of 32-bit Portable Executable (PE) and Component Object File Format (COFF) files
π¦ BinText - A small, very fast and powerful text extractor that will be of particular interest to programmers.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
USEFULL TOOLS FOR PRO HACKERS :
π¦ Binwalk - Detects signatures, unpacks archives, visualizes entropy.
π¦ Veles - a visualizer for statistical properties of blobs.
π¦ Kaitai Struct - a DSL for creating parsers in a variety of programming languages. The Web IDE is particulary useful fir reverse-engineering.
π¦ Protobuf inspector
π¦ DarunGrim - executable differ.
π¦ DBeaver - a DB editor.
π¦ Dependencies - a FOSS replacement to Dependency Walker.
π¦ PEview - A quick and easy way to view the structure and content of 32-bit Portable Executable (PE) and Component Object File Format (COFF) files
π¦ BinText - A small, very fast and powerful text extractor that will be of particular interest to programmers.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - ReFirmLabs/binwalk: Firmware Analysis Tool
Firmware Analysis Tool. Contribute to ReFirmLabs/binwalk development by creating an account on GitHub.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
USEFULL TOOLS FOR PRO HACKERS :
π¦ Binwalk - Detects signatures, unpacks archives, visualizes entropy.
π¦ Veles - a visualizer for statistical properties of blobs.
π¦ Kaitai Struct - a DSL for creating parsers in a variety of programming languages. The Web IDE is particulary useful fir reverse-engineering.
π¦ Protobuf inspector
π¦ DarunGrim - executable differ.
π¦ DBeaver - a DB editor.
π¦ Dependencies - a FOSS replacement to Dependency Walker.
π¦ PEview - A quick and easy way to view the structure and content of 32-bit Portable Executable (PE) and Component Object File Format (COFF) files
π¦ BinText - A small, very fast and powerful text extractor that will be of particular interest to programmers.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
USEFULL TOOLS FOR PRO HACKERS :
π¦ Binwalk - Detects signatures, unpacks archives, visualizes entropy.
π¦ Veles - a visualizer for statistical properties of blobs.
π¦ Kaitai Struct - a DSL for creating parsers in a variety of programming languages. The Web IDE is particulary useful fir reverse-engineering.
π¦ Protobuf inspector
π¦ DarunGrim - executable differ.
π¦ DBeaver - a DB editor.
π¦ Dependencies - a FOSS replacement to Dependency Walker.
π¦ PEview - A quick and easy way to view the structure and content of 32-bit Portable Executable (PE) and Component Object File Format (COFF) files
π¦ BinText - A small, very fast and powerful text extractor that will be of particular interest to programmers.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - ReFirmLabs/binwalk: Firmware Analysis Tool
Firmware Analysis Tool. Contribute to ReFirmLabs/binwalk development by creating an account on GitHub.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 Web Hacking tools :
> source git
π¦ Spyse - Data gathering service that collects web info using OSINT. Provided info: IPv4 hosts, domains/whois, ports/banners/protocols, technologies, OS, AS, maintains huge SSL/TLS DB, and more... All the data is stored in its own database allowing get the data without scanning.
π¦ sqlmap - Automatic SQL injection and database takeover tool
π¦ NoSQLMap - Automated NoSQL database enumeration and web application exploitation tool.
π¦ tools.web-max.ca - base64 base85 md4,5 hash, sha1 hash encoding/decoding
π¦ VHostScan - A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, aliases and dynamic default pages.
π¦ SubFinder - SubFinder is a subdomain discovery tool that discovers valid subdomains for any target using passive online sources.
π¦ Findsubdomains - A subdomains discovery tool that collects all possible subdomains from open source internet and validates them through various tools to provide accurate results.
π¦ badtouch - Scriptable network authentication cracker
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 Web Hacking tools :
> source git
π¦ Spyse - Data gathering service that collects web info using OSINT. Provided info: IPv4 hosts, domains/whois, ports/banners/protocols, technologies, OS, AS, maintains huge SSL/TLS DB, and more... All the data is stored in its own database allowing get the data without scanning.
π¦ sqlmap - Automatic SQL injection and database takeover tool
π¦ NoSQLMap - Automated NoSQL database enumeration and web application exploitation tool.
π¦ tools.web-max.ca - base64 base85 md4,5 hash, sha1 hash encoding/decoding
π¦ VHostScan - A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, aliases and dynamic default pages.
π¦ SubFinder - SubFinder is a subdomain discovery tool that discovers valid subdomains for any target using passive online sources.
π¦ Findsubdomains - A subdomains discovery tool that collects all possible subdomains from open source internet and validates them through various tools to provide accurate results.
π¦ badtouch - Scriptable network authentication cracker
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦2020 Hacking Network TOP RATED TOOLS :
>SOURCE GIT
π¦ NetworkMiner - A Network Forensic Analysis Tool (NFAT)
π¦ Paros - A Java-based HTTP/HTTPS proxy for assessing web application vulnerability
π¦ pig - A Linux packet crafting tool
π¦ findsubdomains - really fast subdomains scanning service that has much greater opportunities than simple subs finder(works using OSINT).
π¦ cirt-fuzzer - A simple TCP/UDP protocol fuzzer.
π¦ ASlookup - a useful tool for exploring autonomous systems and all related info (CIDR, ASN, Org...)
π¦ ZAP - The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications
π¦ mitmsocks4j - Man-in-the-middle SOCKS Proxy for Java
π¦ ssh-mitm - An SSH/SFTP man-in-the-middle tool that logs interactive sessions and passwords.
π¦ nmap - Nmap (Network Mapper) is a security scanner
π¦ Aircrack-ng - An 802.11 WEP and WPA-PSK keys cracking program
π¦ Nipe - A script to make Tor Network your default gateway.
π¦ Habu - Python Network Hacking Toolkit
π¦ Wifi Jammer - Free program to jam all wifi clients in range
π¦ Firesheep - Free program for HTTP session hijacking attacks.
π¦ Scapy - A Python tool and library for low level packet creation and manipulation
π¦ Amass - In-depth subdomain enumeration tool that performs scraping, recursive brute forcing, crawling of web archives, name altering and reverse DNS sweeping
π¦ sniffglue - Secure multithreaded packet sniffer
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦2020 Hacking Network TOP RATED TOOLS :
>SOURCE GIT
π¦ NetworkMiner - A Network Forensic Analysis Tool (NFAT)
π¦ Paros - A Java-based HTTP/HTTPS proxy for assessing web application vulnerability
π¦ pig - A Linux packet crafting tool
π¦ findsubdomains - really fast subdomains scanning service that has much greater opportunities than simple subs finder(works using OSINT).
π¦ cirt-fuzzer - A simple TCP/UDP protocol fuzzer.
π¦ ASlookup - a useful tool for exploring autonomous systems and all related info (CIDR, ASN, Org...)
π¦ ZAP - The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications
π¦ mitmsocks4j - Man-in-the-middle SOCKS Proxy for Java
π¦ ssh-mitm - An SSH/SFTP man-in-the-middle tool that logs interactive sessions and passwords.
π¦ nmap - Nmap (Network Mapper) is a security scanner
π¦ Aircrack-ng - An 802.11 WEP and WPA-PSK keys cracking program
π¦ Nipe - A script to make Tor Network your default gateway.
π¦ Habu - Python Network Hacking Toolkit
π¦ Wifi Jammer - Free program to jam all wifi clients in range
π¦ Firesheep - Free program for HTTP session hijacking attacks.
π¦ Scapy - A Python tool and library for low level packet creation and manipulation
π¦ Amass - In-depth subdomain enumeration tool that performs scraping, recursive brute forcing, crawling of web archives, name altering and reverse DNS sweeping
π¦ sniffglue - Secure multithreaded packet sniffer
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
Netresec
NetworkMiner - The NSM and Network Forensics Analysis Tool β
Network Miner is a network forensics tool for analyzing network traffic
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦2020 Forensic tools- top rated :
> git sources
π¦ Autopsy - A digital forensics platform and graphical interface to The Sleuth Kit and other digital forensics tools
π¦ sleuthkit - A library and collection of command-line digital forensics tools
π¦ EnCase - The shared technology within a suite of digital investigations products by Guidance Software
π¦ malzilla - Malware hunting tool
π¦ IPED - Indexador e Processador de EvidΓΒͺncias Digitais - Brazilian Federal Police Tool for Forensic Investigation
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦2020 Forensic tools- top rated :
> git sources
π¦ Autopsy - A digital forensics platform and graphical interface to The Sleuth Kit and other digital forensics tools
π¦ sleuthkit - A library and collection of command-line digital forensics tools
π¦ EnCase - The shared technology within a suite of digital investigations products by Guidance Software
π¦ malzilla - Malware hunting tool
π¦ IPED - Indexador e Processador de EvidΓΒͺncias Digitais - Brazilian Federal Police Tool for Forensic Investigation
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
www.sleuthkit.org
Autopsy
Autopsy is an open source graphical interface to The Sleuth Kit and other digital forensics tools.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 Cryptography tools-top rated
> git sources
1) xortool - A tool to analyze multi-byte XOR cipher
2) John the Ripper - A fast password cracker
3) Aircrack - Aircrack is 802.11 WEP and WPA-PSK keys cracking program.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 Cryptography tools-top rated
> git sources
1) xortool - A tool to analyze multi-byte XOR cipher
2) John the Ripper - A fast password cracker
3) Aircrack - Aircrack is 802.11 WEP and WPA-PSK keys cracking program.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - hellman/xortool: A tool to analyze multi-byte xor cipher
A tool to analyze multi-byte xor cipher. Contribute to hellman/xortool development by creating an account on GitHub.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
Wargame- 2020 most popular :
π¦ OverTheWire - Semtex
π¦ OverTheWire - Vortex
π¦ OverTheWire - Drifter
π¦ pwnable.kr - Provide various pwn challenges regarding system security
π¦ Exploit Exercises - Nebula
π¦ SmashTheStack
π¦ HackingLab
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
Wargame- 2020 most popular :
π¦ OverTheWire - Semtex
π¦ OverTheWire - Vortex
π¦ OverTheWire - Drifter
π¦ pwnable.kr - Provide various pwn challenges regarding system security
π¦ Exploit Exercises - Nebula
π¦ SmashTheStack
π¦ HackingLab
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
Hacking-Lab
Hacking-Lab for Cyber Security Training
Hacking-Lab offers tailored cyber security training to strengthen your team's offensive and defensive skills. Learn more.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
> 2020 Reverse Engineering-most popular-Helfull :
π¦ Reversing.kr - This site tests your ability to Cracking & Reverse Code Engineering
π¦ CodeEngn - (Korean)
π¦ simples.kr - (Korean)
π¦ Crackmes.de - The world first and largest community website for crackmes and reversemes
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
> 2020 Reverse Engineering-most popular-Helfull :
π¦ Reversing.kr - This site tests your ability to Cracking & Reverse Code Engineering
π¦ CodeEngn - (Korean)
π¦ simples.kr - (Korean)
π¦ Crackmes.de - The world first and largest community website for crackmes and reversemes
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
Codeengn
CodeEngn.com [μ½λμμ§] - Challenges
μ½λμμ§μ κ΅λ΄ 리λ²μ€μμ§λμ΄λ§ μ 보곡μ λ₯Ό μν΄ 2007λ
λΆν° 리λ²μ€μμ§λμ΄λ§ 컨νΌλ°μ€ λ° λΉκ³΅κ° μν¬μμ νμ
μ€λ¬΄μλ€κ³Ό ν¨κ» μ΄μνκ³ μμ΅λλ€. 리λ²μ€μμ§λμ΄λ§μ΄λΌλ νλμ ν° μ£Όμ λ‘ μννΈμ¨μ΄ 보μμ λν λ€μν μκ°κ³Ό μ°κ΅¬μ£Όμ μ λν μ 보곡μ λ₯Ό μΆκ΅¬νκ³ μμΌλ©°, μμ
μ μ΄μ΅ μμ΄ μμ μμ°μΌλ‘ μ΄μνκ³ μμ΄ ν° μμ°μΌλ‘ μ΄μνλ λ€λ₯Έ 컨νΌλ°μ€μ λΉν΄ μ¬λ¬ κ°μ§λ‘ λΆμ‘± ν μ μμ΅λλ€.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 CTF
#Competition :
π¦ DEF CON
π¦ CSAW CTF
π¦ hack.lu CTF
π¦ Pliad CTF
π¦ RuCTFe
π¦ Ghost in the Shellcode
π¦ PHD CTF
π¦ SECUINSIDE CTF
π¦ Codegate CTF
π¦ Boston Key Party CTF
π¦ ZeroDays CTF
π¦ InsomniΓ’β¬β’hack
π¦ Pico CTF
π¦ prompt(1) to win - XSS Challeges
π¦ HackTheBox
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 CTF
#Competition :
π¦ DEF CON
π¦ CSAW CTF
π¦ hack.lu CTF
π¦ Pliad CTF
π¦ RuCTFe
π¦ Ghost in the Shellcode
π¦ PHD CTF
π¦ SECUINSIDE CTF
π¦ Codegate CTF
π¦ Boston Key Party CTF
π¦ ZeroDays CTF
π¦ InsomniΓ’β¬β’hack
π¦ Pico CTF
π¦ prompt(1) to win - XSS Challeges
π¦ HackTheBox
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 General hacking :
> top git resources :
π¦ Hack+ - An Intelligent network of bots that fetch the latest InfoSec content.
π¦ CTFtime.org - All about CTF (Capture The Flag)
π¦ WeChall
π¦ CTF archives (shell-storm)
π¦ Rookit Arsenal - OS RE and rootkit development
π¦ Pentest Cheat Sheets - Collection of cheat sheets useful for pentesting
π¦ Movies For Hackers - A curated list of movies every hacker & cyberpunk must watch.
π¦ Hopper's Roppers Intro. to CTF Course - A free course that teaches the fundamentals of forensics, cryptography, and web-exploitation required to be successful in Capture the Flag competitions.
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 General hacking :
> top git resources :
π¦ Hack+ - An Intelligent network of bots that fetch the latest InfoSec content.
π¦ CTFtime.org - All about CTF (Capture The Flag)
π¦ WeChall
π¦ CTF archives (shell-storm)
π¦ Rookit Arsenal - OS RE and rootkit development
π¦ Pentest Cheat Sheets - Collection of cheat sheets useful for pentesting
π¦ Movies For Hackers - A curated list of movies every hacker & cyberpunk must watch.
π¦ Hopper's Roppers Intro. to CTF Course - A free course that teaches the fundamentals of forensics, cryptography, and web-exploitation required to be successful in Capture the Flag competitions.
@UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
ctftime.org
CTFtime.org / All about CTF (Capture The Flag)
Capture The Flag, CTF teams, CTF ratings, CTF archive, CTF writeups
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 Post exploitation populars :
π¦ empire - A post exploitation framework for powershell and python.
π¦ silenttrinity - A post exploitation tool that uses iron python to get past powershell restrictions.
π¦ ebowla - Framework for Making Environmental Keyed Payloads
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
2020 Post exploitation populars :
π¦ empire - A post exploitation framework for powershell and python.
π¦ silenttrinity - A post exploitation tool that uses iron python to get past powershell restrictions.
π¦ ebowla - Framework for Making Environmental Keyed Payloads
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - EmpireProject/Empire: Empire is a PowerShell and Python post-exploitation agent.
Empire is a PowerShell and Python post-exploitation agent. - EmpireProject/Empire
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦Updated Empire is a PowerShell and Python post-exploitation agent.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½:
1) git clone https://github.com/EmpireProject/Empire.git
2) Initial Setup
> Run the ./setup/install.sh script. This will install the few dependencies and run the ./setup/setup_database.py script. The setup_database.py file contains various setting that you can manually modify
3) and then initializes the ./data/empire.db backend database. No additional configuration should be needed- hopefully everything works out of the box.
4) Running ./empire will start Empire, and ./empire βdebug will generate a verbose debug log at ./empire.debug. The included ./setup/reset.sh will reset/reinitialize the database and launch Empire in debug mode.
> [for more](http://www.powershellempire.com/?page_id=110)
β @UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦Updated Empire is a PowerShell and Python post-exploitation agent.
πΈπ½π π π°π»π»πΈπ π°π πΈπΎπ½ & π π π½:
1) git clone https://github.com/EmpireProject/Empire.git
2) Initial Setup
> Run the ./setup/install.sh script. This will install the few dependencies and run the ./setup/setup_database.py script. The setup_database.py file contains various setting that you can manually modify
3) and then initializes the ./data/empire.db backend database. No additional configuration should be needed- hopefully everything works out of the box.
4) Running ./empire will start Empire, and ./empire βdebug will generate a verbose debug log at ./empire.debug. The included ./setup/reset.sh will reset/reinitialize the database and launch Empire in debug mode.
> [for more](http://www.powershellempire.com/?page_id=110)
β @UndercodeTesting
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - EmpireProject/Empire: Empire is a PowerShell and Python post-exploitation agent.
Empire is a PowerShell and Python post-exploitation agent. - EmpireProject/Empire
Forwarded from Backup Legal Mega
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦Quickly check whether the computer has been hacked (Linux version)
1) Abnormal account and permissions
If a hacker has ever had an opportunity to run a command, the other party will often want to continue this opportunity, as the industry calls it (persistence).
2) And creating a backdoor account is often a persistent approach.
3) Check abnormal account
3) Search users
cat /etc/passwdYou can see all the users and corresponding group information in the current system. If you have too many accounts, you canβt see them at a glance.
I usually use the following methods to filter:
> cat / etc / passwd | awk - F : '{print $7}' | sort | uniq - c
The purpose of changing the command is to print all types of shells and the corresponding number. For users with shells, you need to check carefully.
π¦Quickly check whether the computer has been hacked (Linux version)
1) Abnormal account and permissions
If a hacker has ever had an opportunity to run a command, the other party will often want to continue this opportunity, as the industry calls it (persistence).
2) And creating a backdoor account is often a persistent approach.
3) Check abnormal account
3) Search users
cat /etc/passwdYou can see all the users and corresponding group information in the current system. If you have too many accounts, you canβt see them at a glance.
I usually use the following methods to filter:
> cat / etc / passwd | awk - F : '{print $7}' | sort | uniq - c
The purpose of changing the command is to print all types of shells and the corresponding number. For users with shells, you need to check carefully.
Forwarded from Backup Legal Mega
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
Β» π¦Quickly check whether the computer has been hacked (Linux version)
π¦Check users :
If you obtained an abnormal user name (assumed to be hacker) in the previous step , you can check the user in detail using the following methods:
1) View user id and group information: id hacker
2) View user's recent login information: lastlog -u hacker
3) View user history login information: last hacker
4) View user login failure information: lastb hacker
5) View comprehensive information: finger hacker
6) Note: The fingercommand is not built-in in some operating systems, you can use the package management tool to install it yourself, such as:
> Ubuntu/Debian: apt-get install finger
> CentOS/RedHat: yum install finger
> ArchLinux: pacman -S finger
7) The other non-built-in commands mentioned below are similar
Β» π¦Quickly check whether the computer has been hacked (Linux version)
π¦Check users :
If you obtained an abnormal user name (assumed to be hacker) in the previous step , you can check the user in detail using the following methods:
1) View user id and group information: id hacker
2) View user's recent login information: lastlog -u hacker
3) View user history login information: last hacker
4) View user login failure information: lastb hacker
5) View comprehensive information: finger hacker
6) Note: The fingercommand is not built-in in some operating systems, you can use the package management tool to install it yourself, such as:
> Ubuntu/Debian: apt-get install finger
> CentOS/RedHat: yum install finger
> ArchLinux: pacman -S finger
7) The other non-built-in commands mentioned below are similar
Forwarded from Backup Legal Mega
Β» ]Quickly check whether the computer has been hacked (Linux version)
π¦Check abnormal permissions
Linux users will generally use sudoto allow ordinary users can perform root operations, so for the average user already exists,
Can not be taken lightly. sudoPermissions management, in /etc/sudoersand /etc/sudoers.dyou can view,
It is best to check the changed files frequently to ensure that no ordinary user has obtained unexpected permissions. For each ordinary user,
You can use the command groups usernameto query the group it belongs to, if it is root or sudo group,
Or the group is in the /etc/sudoersfile, then it will be especially alert.
π¦Check abnormal permissions
Linux users will generally use sudoto allow ordinary users can perform root operations, so for the average user already exists,
Can not be taken lightly. sudoPermissions management, in /etc/sudoersand /etc/sudoers.dyou can view,
It is best to check the changed files frequently to ensure that no ordinary user has obtained unexpected permissions. For each ordinary user,
You can use the command groups usernameto query the group it belongs to, if it is root or sudo group,
Or the group is in the /etc/sudoersfile, then it will be especially alert.