Got Root? A Linux Priv-Esc Benchmark (2405.02106v2)
Abstract: Linux systems are integral to the infrastructure of modern computing environments, necessitating robust security measures to prevent unauthorized access. Privilege escalation attacks represent a significant threat, typically allowing attackers to elevate their privileges from an initial low-privilege account to the all-powerful root account. A benchmark set of vulnerable systems is of high importance to evaluate the effectiveness of privilege-escalation techniques performed by both humans and automated tooling. Analyzing their behavior allows defenders to better fortify their entrusted Linux systems and thus protect their infrastructure from potentially devastating attacks. To address this gap, we developed a comprehensive benchmark for Linux privilege escalation. It provides a standardized platform to evaluate and compare the performance of human and synthetic actors, e.g., hacking scripts or automated tooling.
- Jonathan Donas. Linux exploit suggester 2. https://github.com/jondonas/linux-exploit-suggester-2. Accessed: 2024-03-11.
- GTFOBins. Gtfobins. https://gtfobins.github.io/, 2024. Accessed: 2024-03-11.
- Hack The Box Ltd. Hackthebox academy: Linux privilege escalation. https://academy.hackthebox.com/course/preview/linux-privilege-escalation, 2024. Accessed: 2024-03-11.
- Understanding hackers’ work: An empirical study of offensive security practitioners. In Proceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, ESEC/FSE 2023, New York, NY, USA, 2023. Association for Computing Machinery.
- Tib3rius. Tryhackme: Linux privesc. https://tryhackme.com/room/linuxprivesc. Accessed: 2024-03-11.