Tag:ubuntu

Tag (ubuntu)'s result:

ubuntu14 or 16.04安装MSF5

20200719 updated ubuntu 16.04安装msf5 注意: 1.尽量用非root的sudo用户,否则可能会出现非root无法用root安装的bundler install依赖 2.第一次执行msfconsole先退出ssh //或者在msf目录执行msfconsole否则可能提示缺少依赖,要安装166个gem install依赖……   34  apt-get install build-essential libreadline-dev libssl-dev libpq5 libpq-dev libreadline5 libsqlite3-dev libpcap-dev git-core autoconf postgresql pgadmin3 curl zlib1g-dev libxml2-dev libxslt1-dev vncviewer libyaml-dev zlib1g-dev   apt-get install software-properties-common python-software-properties 29  add-apt-repository ppa:openjdk-r/ppa   apt-get update 32  apt-get install openjdk-7-jdk   37  git clone git://github.com/sstephenson/rbenv.git .rbenv 38  cd 39  echo ‘export PATH=”$HOME/.rbenv/bin:$PATH”‘ >> ~/.bashrc 40  echo ‘eval “$(rbenv init -)”‘ >> ~/.bashrc 41  git clone git://github.com/sstephenson/ruby-build.git ~/.rbenv/plugins/ruby-build 42  echo ‘export PATH=”$HOME/.rbenv/plugins/ruby-build/bin:$PATH”‘ >> ~/.bashrc 43  git clone git://github.com/dcarley/rbenv-sudo.git ~/.rbenv/plugins/rbenv-sudo   45  source .bashrc   49  apt-get install nmap 50  apt-get install openssl ruby-openssl libssl-dev 51  apt-get install openssl libssl-dev   52  su postgres createuser msf -P -S -R -D 3  cd 4  createdb -O msf msf exit   53  cd /opt 54  ls 55  git clone https://github.com/rapid7/metasploit-framework.git 56  cd metasploit-framework/ 57  ls   65  curl -L get.rvm.io | bash -s stable 66  ls 67  cd 68  gpg –keyserver hkp://pool.sks-keyservers.net –recv-keys 409B6B1796C275462A1703113804BB82D39DC0E3 7D2BAF1CF37B13E2069D6956105BD0E739499BDB 69  curl -L get.rvm.io | bash -s stable 70  rvm -v……

Ubuntu本地提权(CVE-2017-16995)漏洞重现

0x00 概述 2018年3月,网上爆出ubuntu本地提权漏洞CVE-2017-16995的exp,这个漏洞是ebpf验证器计算错误导致的任意内存读写,使得攻击者获取root权限,据说这个exp十分犀利,秒aws秒阿里。 该exp地址:http://cyseclabs.com/exploits/upstream44.c   0x01 影响范围 Ubuntu 内核4.14-4.4(据说debian也受影响,但本人未发现成功的案例)   0x02 漏洞重现 测试环境:ubuntu 16.04 kernel 4.4.0-105   0x03 修复方案 修改内核参赛限制普通用户对bpf2的调用 echo 1 > /proc/sys/kernel/unprivileged_bpf_disabled 升级内核版本到4.0-117   0x04 相关分析 若想深入了解该漏洞,可以参考以下资料 https://cert.360.cn/report/detail?id=ff28fc8d8cb2b72148c9237612933c11 https://xianzhi.aliyun.com/forum/topic/2212   0x05 参考资料 http://cyseclabs.com/exploits/upstream44.c www.freebuf.com/news/165608.html https://cert.360.cn/warning/detail?id=119f849891f2a1b5deef65f99923ab5a