SUID

SUID (Set User ID) is a special permission bit in Unix-like systems that allows a user to execute a file with the permissions of the file owner, rather than the permissions of the user who is executing the file. Attackers can use this feature to escalate their privileges on a system by finding a file that has the SUID bit set and then running it to gain elevated privileges.

These files can enumerated by running :

find / -type f -perm -04000 -ls 2>/dev/null

PreviousGTFObins NextExploiting writable files and directories

Last updated 2 years ago

Was this helpful?