Linux Privilege Escalation | HackTheBox Squashed

We enumerate NFS shares, and upload a Web Shell . We also performed Linux privilege escalation by getting an X11 magic cookie from a different NFS share and using it to get a screenshot of the current user’s desktop, showing the root password in a password manager. This was part of HackTheBox Squashed machine.

Squashed is an Easy Difficulty Linux machine that features a combination of both identifying and leveraging misconfigurations in NFS shares through impersonating users. Additionally, the box incorporates the enumeration of an X11 display into the privilege escalation by having the attacker take a screenshot of the current Desktop.

Get OSCP Notes

Video Walkthrough

CTF Writeups, HackTheBox, HackTheBox Squashed, Linux privilege escalation

Show Comments

MasterMind Study Notes

About the Author

Mastermind Study Notes is a group of talented authors and writers who are experienced and well-versed across different fields. The group is led by, Motasem Hamdan, who is a Cybersecurity content creator and YouTuber.

View Articles

Linux Privilege Escalation Through X11 Authorization | HackTheBox Squashed

Leave a Reply Cancel reply

MasterMind Study Notes

About the Author

Press ESC to close

Linux Privilege Escalation Through X11 Authorization | HackTheBox Squashed

Leave a Reply Cancel reply

MasterMind Study Notes

About the Author

Share Article:

You might also like

Vulnerability Scanning in Cyber Security | FREE Short Course

TryHackMe Hashing and Cryptography 101 | TryHackMe Hashing – Crypto 101

TryHackMe Log Universe