Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

Linux Privilege Escalation > Initial Enumeration > Flashcards

Initial Enumeration Flashcards

1
Q

Why is it useful to list the kernel version?

A

Once you know the kernel version, you can look for exploits for it. Search if the showed version is vulnerable to an exploit.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What commands can be used to show the kernel version of a system?

A 
$ uname -a
$ cat /proc/version
$ cat /etc/issue

The last one shows the distribution!

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Why is it important to list the CPU of a system?

A

Some kernel exploits require a minimum ammount of cpu cores to be able to work properly. Besides that, it returns useful information about the current hardware.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What command can be used to display information about the CPU architecture?

A 
$ lscpu
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What commands can be used to display the current services/processes?

A 
$ ps aux
$ top
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Why is it important to perform user enumeration?

A

It’s very important to know who we are, what permissions we have and what we are capable of doing in a system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What commands can be used to display who the current user is?

A 
$ whoami
$ id
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What command can be used to display the commands that can be run as sudo?

A 
$ sudo -l
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Why is it important to look the bash history? What command can be used to display it?

A

The bash history can return useful hints or even some quick wins like a password. The command is simply history.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Why is it important to perform network enumeration?

A

It lets us understand the IP architecture, see the networks that the system has access to it and see open ports availbable internally.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How to list network interfaces?

A 
$ ifconfig (old)
$ ip a
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How to display the route table?

A 
$ route
$ ip route
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

How to display the ARP table?

A 
$ arp -a
$ ip n
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How to display internet connections, ports available and open internal ports?

A 
$ netstat -ano
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Why is it useful to use automated tools?

A

These tools can return lots of information in less time and in a more organized way.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Automated tools for PE

How many tools should you run?

A

You shouldn’t rely on a single tool, because one tool can fail to find something that other was able to capture. So if you are not seeing anything with one tool, try another.

17
Q

What is a good strategy when looking through the results of a LinPEAS scan?

A

Scroll through the results paying attention to RED/YELLOW and RED marked parts of the text.

Linux Privilege Escalation (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions