search

peass-ng / PEASS-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
https://book.hacktricks.xyz
Other
15.59k stars 3.04k forks source link

What does (I can't do it ... ) mean? #337

Open honanduc opened 1 year ago

honanduc commented 1 year ago

Issue description

I would like linpeas to try to bruteforce su but it just tells me "Do not forget to test 'su' as any other user with shell: without password and with their names as password (I can't do it ... )".

Steps to reproduce the issue

  1. wget latest linpeas.sh to attack machine
  2. host it on attack machine
  3. wget it on victim machine and run it

Which parameters did you use for executing the script and how did you execute it?

sh linpeas.sh -a ./linpeas.sh -a bash linpeas.sh -a

Is there any AV / Threat protection in the system?

No

Please, indicate the OS, the OS version, and the kernel version (build number in case of Windows)

Host is Kali rolling x64, kernel 6.0.0 Victim is this box from vulnhub

Please, indicate the check that is failing and add a screenshot showing the problem

Sorry, no screenshot.

How did you expect it to work?

I expected it to try to bruteforce user root using password null, password root, then top2000pwds.

Additional details / screenshot

I tried it in bash and in sh.

jdholtz commented 5 months ago

This message is from this block in the script. The message was changed from I can't do it to I don't do it in FAST mode, so you probably need to run the script one of the following options: -a: Perform all checks: 1 min of processes, su brute, and extra checks. -P: Indicate a password that will be used to run 'sudo -l' and to bruteforce other users accounts via 'su'