HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

Linux Smart Enumeration

Status
Not open for further replies.
0x1

0x1

LeVeL23 HacKerS TeaM
User
Joined
Nov 15, 2013
Messages
880
Reputation
0
Reaction score
6,315
Points
243
Credits
78
‎11 Years of Service‎
18%
Linux enumeration tool for pentesting and CTFs with verbosity levels

T9ZCWMH.jpg

Unlike LinEnum, lse tries to gradualy expose the information depending on its importance from a privesc point of view.​


What is it?


This script will show relevant information about the security of the local Linux system.​

It has 3 levels of verbosity so you can control how much information you see.​

In the default level you should see the highly important security flaws in the system. The level 1 (./lse.sh -l1) shows interesting information that should help you to privesc. The level 2 (./lse.sh -l2) will just dump all the information it gathers about the system.​

By default it will ask you some questions: mainly the current user password (if you know it 😉 so it can do some additional tests.​


How to use it?


The idea is to get the information gradually.​

First you should execute it just like ./lse.sh. If you see some green yes!, you probably have already some good stuff to work with.​

If not, you should try the level 1 verbosity with ./lse.sh -l1 and you will see some more information that can be interesting.​

If that does not help, level 2 will just dump everything you can gather about the service using ./lse.sh -l2. In this case you might find useful to use ./lse.sh -l2 | less -r.​

You can also select what tests to execute by passing the -s parameter. With it you can select specific tests or sections to be executed. For example ./lse.sh -l2 -s usr010,net,pro will execute the test usr010 and all the tests in the sections net and pro.​

Code: 
Use: ./lse.sh [options]

 OPTIONS
   -c           Disable color
   -i           Non interactive mode
   -h           This help
   -l LEVEL     Output verbosity level
                  0: Show highly important results. (default)
                  1: Show interesting results.
                  2: Show all gathered information.
   -s SELECTION Comma separated list of sections or tests to run. Available
                sections:
                  usr: User related tests.
                  sud: Sudo related tests.
                  fst: File system related tests.
                  sys: System related tests.
                  sec: Security measures related tests.
                  ret: Recurren tasks (cron, timers) related tests.
                  net: Network related tests.
                  srv: Services related tests.
                  pro: Processes related tests.
                  sof: Software related tests.
                  ctn: Container (docker, lxc) related tests.
                Specific tests can be used with their IDs (i.e.: usr020,sud)
Source & Download :
To see this hidden content, you must like this content.
 
Status
Not open for further replies.
Back
Top