hacktricks/linux-unix/privilege-escalation/interesting-groups-linux-pe.md

<details>

<summary><strong>Jifunze kuhusu kudukua AWS kutoka sifuri hadi shujaa na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (Mtaalam wa Timu Nyekundu ya AWS ya HackTricks)</strong></a><strong>!</strong></summary>

Njia nyingine za kusaidia HackTricks:

* Ikiwa unataka kuona **kampuni yako inatangazwa kwenye HackTricks** au **kupakua HackTricks kwa PDF** Angalia [**MPANGO WA KUJIUNGA**](https://github.com/sponsors/carlospolop)!
* Pata [**swag rasmi ya PEASS & HackTricks**](https://peass.creator-spring.com)
* Gundua [**The PEASS Family**](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa kipekee wa [**NFTs**](https://opensea.io/collection/the-peass-family)
* **Jiunge na** 💬 [**Kikundi cha Discord**](https://discord.gg/hRep4RUj7f) au [**kikundi cha telegram**](https://t.me/peass) au **tufuate** kwenye **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks_live)**.**
* **Shiriki mbinu zako za kudukua kwa kuwasilisha PRs kwenye** [**HackTricks**](https://github.com/carlospolop/hacktricks) na [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) repos za github.

</details>


# Vikundi vya Sudo/Admin

## **PE - Njia ya 1**

**Marafiki**, **kwa chaguo-msingi \(au kwa sababu fulani programu inahitaji\)** ndani ya faili ya **/etc/sudoers** unaweza kupata mistari hii:
```bash
# Allow members of group sudo to execute any command
%sudo	ALL=(ALL:ALL) ALL

# Allow members of group admin to execute any command
%admin 	ALL=(ALL:ALL) ALL
```
Hii inamaanisha kwamba **mtumiaji yeyote ambaye ni mwanachama wa kikundi cha sudo au admin anaweza kutekeleza chochote kama sudo**.

Ikiwa hii ndiyo hali, **ili kuwa root unaweza tu kutekeleza**:
```text
sudo su
```
## PE - Njia 2

Tafuta programu-jalizi zote za suid na angalia kama kuna programu-jalizi ya **Pkexec**:
```bash
find / -perm -4000 2>/dev/null
```
Ikiwa utagundua kuwa faili ya binary ya pkexec ni faili ya SUID na wewe ni mwanachama wa sudo au admin, huenda uweze kutekeleza faili za binary kama sudo kwa kutumia pkexec.
Angalia maudhui ya:
```bash
cat /etc/polkit-1/localauthority.conf.d/*
```
Hapo utapata kikundi gani kinaruhusiwa kutekeleza **pkexec** na **kwa chaguo-msingi** katika baadhi ya linux inaweza **kuonekana** baadhi ya vikundi **sudo au admin**.

Kuwa **root unaweza kutekeleza**:
```bash
pkexec "/bin/sh" #You will be prompted for your user password
```
Ikiwa unajaribu kutekeleza **pkexec** na unapata **kosa** hili:
```bash
polkit-agent-helper-1: error response to PolicyKit daemon: GDBus.Error:org.freedesktop.PolicyKit1.Error.Failed: No session for cookie
==== AUTHENTICATION FAILED ===
Error executing command as another user: Not authorized
```
**Sio kwa sababu huna ruhusa lakini ni kwa sababu hauko na uhusiano bila GUI**. Na kuna suluhisho kwa shida hii hapa: [https://github.com/NixOS/nixpkgs/issues/18012\#issuecomment-335350903](https://github.com/NixOS/nixpkgs/issues/18012#issuecomment-335350903). Unahitaji **vikao vya ssh 2 tofauti**:

{% code title="kikao1" %}
```bash
echo $$ #Step1: Get current PID
pkexec "/bin/bash" #Step 3, execute pkexec
#Step 5, if correctly authenticate, you will have a root session
```
{% code title="kikao2" %}
```bash
pkttyagent --process <PID of session1> #Step 2, attach pkttyagent to session1
#Step 4, you will be asked in this session to authenticate to pkexec
```
{% endcode %}

# Kikundi cha Wheel

**Marafiki**, **kwa chaguo-msingi** ndani ya faili ya **/etc/sudoers** unaweza kupata mstari huu:
```text
%wheel	ALL=(ALL:ALL) ALL
```
Hii inamaanisha kwamba **mtumiaji yeyote ambaye ni mwanachama wa kikundi cha wheel anaweza kutekeleza chochote kama sudo**.

Ikiwa hii ndiyo hali, **ili kuwa root unaweza tu kutekeleza**:
```text
sudo su
```
# Kikundi cha Shadow

Watumiaji kutoka **kikundi cha shadow** wanaweza **kusoma** faili ya **/etc/shadow**:
```text
-rw-r----- 1 root shadow 1824 Apr 26 19:10 /etc/shadow
```
Basi, soma faili na jaribu **kuvunja baadhi ya hashi**.

# Kikundi cha Diski

Haki hii ni karibu **sawa na ufikiaji wa root** kwa sababu unaweza kupata data yote ndani ya kifaa.

Faili: `/dev/sd[a-z][1-9]`
```text
debugfs /dev/sda1
debugfs: cd /root
debugfs: ls
debugfs: cat /root/.ssh/id_rsa
debugfs: cat /etc/shadow
```
Tafadhali kumbuka kwamba kwa kutumia debugfs unaweza pia **kuandika faili**. Kwa mfano, ili kuiga `/tmp/asd1.txt` kwenda `/tmp/asd2.txt` unaweza kufanya:
```bash
debugfs -w /dev/sda1
debugfs:  dump /tmp/asd1.txt /tmp/asd2.txt
```
Hata hivyo, ikiwa unajaribu **kuandika faili zinazomilikiwa na root** \(kama vile `/etc/shadow` au `/etc/passwd`\), utapata kosa la "**Ruhusa imekataliwa**".

# Kikundi cha Video

Kwa kutumia amri `w` unaweza kupata **nani ameingia kwenye mfumo** na itaonyesha matokeo kama ifuatavyo:
```bash
USER     TTY      FROM             LOGIN@   IDLE   JCPU   PCPU WHAT
yossi    tty1                      22:16    5:13m  0.05s  0.04s -bash
moshe    pts/1    10.10.14.44      02:53   24:07   0.06s  0.06s /bin/bash
```
**tty1** inamaanisha kuwa mtumiaji **yossi ameingia kimwili** kwenye kifaa cha terminal kwenye kompyuta.

Kikundi cha **video** kina ruhusa ya kuona matokeo ya skrini. Kimsingi unaweza kuangalia skrini hizo. Ili kufanya hivyo, unahitaji **kunasa picha ya sasa kwenye skrini** kwa njia ya data safi na kupata azimio ambalo skrini inatumia. Data ya skrini inaweza kuokolewa kwenye `/dev/fb0` na unaweza kupata azimio la skrini hii kwenye `/sys/class/graphics/fb0/virtual_size`.
```bash
cat /dev/fb0 > /tmp/screen.raw
cat /sys/class/graphics/fb0/virtual_size
```
Kuifungua picha ya asili unaweza kutumia GIMP, chagua faili ya `screen.raw` na chagua aina ya faili kuwa **Raw image data**:

![](../../.gitbook/assets/image%20%28208%29.png)

Kisha badilisha upana na urefu kuwa ule unaotumiwa kwenye skrini na angalia aina tofauti za picha (na chagua ile inayoonyesha skrini vizuri zaidi):

![](../../.gitbook/assets/image%20%28295%29.png)

# Kikundi cha Root

Inaonekana kwa chaguo-msingi **wanachama wa kikundi cha root** wanaweza kupata ufikiaji wa kubadilisha baadhi ya faili za mipangilio ya **huduma** au baadhi ya faili za **maktaba** au **vituko vingine vya kuvutia** ambavyo vinaweza kutumika kuongeza mamlaka...

**Angalia ni faili zipi wanachama wa root wanaweza kubadilisha**:
```bash
find / -group root -perm -g=w 2>/dev/null
```
# Kikundi cha Docker

Unaweza kufunga mfumo wa faili wa mwenyeji kwenye kiasi cha kifaa, kwa hivyo wakati kifaa kinaanza, kinapakia mara moja `chroot` kwenye kiasi hicho. Hii kimsingi inakupa udhibiti kamili wa mfumo.

{% embed url="https://github.com/KrustyHack/docker-privilege-escalation" %}

{% embed url="https://fosterelli.co/privilege-escalation-via-docker.html" %}

# Kikundi cha lxc/lxd

[lxc - Kupandisha Hadhi ya Uteuzi](lxd-privilege-escalation.md)


<details>

<summary><strong>Jifunze kuhusu kudukua AWS kutoka sifuri hadi shujaa na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>

Njia nyingine za kusaidia HackTricks:

* Ikiwa unataka kuona **kampuni yako inatangazwa kwenye HackTricks** au **kupakua HackTricks kwa muundo wa PDF** Angalia [**MPANGO WA KUJIUNGA**](https://github.com/sponsors/carlospolop)!
* Pata [**swag rasmi wa PEASS & HackTricks**](https://peass.creator-spring.com)
* Gundua [**The PEASS Family**](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [**NFTs**](https://opensea.io/collection/the-peass-family) ya kipekee
* **Jiunge na** 💬 [**Kikundi cha Discord**](https://discord.gg/hRep4RUj7f) au [**kikundi cha telegram**](https://t.me/peass) au **tufuate** kwenye **Twitter** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks_live)**.**
* **Shiriki mbinu zako za kudukua kwa kuwasilisha PR kwa** [**HackTricks**](https://github.com/carlospolop/hacktricks) na [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.

</details>
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00			`<details>`

Translated to Swahili 2024-02-11 02:13:58 +00:00			`<summary><strong>Jifunze kuhusu kudukua AWS kutoka sifuri hadi shujaa na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (Mtaalam wa Timu Nyekundu ya AWS ya HackTricks)</strong></a><strong>!</strong></summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Njia nyingine za kusaidia HackTricks:`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`* Ikiwa unataka kuona kampuni yako inatangazwa kwenye HackTricks au kupakua HackTricks kwa PDF Angalia [MPANGO WA KUJIUNGA](https://github.com/sponsors/carlospolop)!`
			`* Pata [swag rasmi ya PEASS & HackTricks](https://peass.creator-spring.com)`
			`* Gundua [The PEASS Family](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa kipekee wa [NFTs](https://opensea.io/collection/the-peass-family)`
			`* Jiunge na 💬 [Kikundi cha Discord](https://discord.gg/hRep4RUj7f) au [kikundi cha telegram](https://t.me/peass) au tufuate kwenye Twitter 🐦 [@carlospolopm](https://twitter.com/hacktricks_live).`
			`* Shiriki mbinu zako za kudukua kwa kuwasilisha PRs kwenye [HackTricks](https://github.com/carlospolop/hacktricks) na [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) repos za github.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`


Translated to Swahili 2024-02-11 02:13:58 +00:00			`# Vikundi vya Sudo/Admin`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`## PE - Njia ya 1`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Marafiki, kwa chaguo-msingi \(au kwa sababu fulani programu inahitaji\) ndani ya faili ya /etc/sudoers unaweza kupata mistari hii:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`# Allow members of group sudo to execute any command`
			`%sudo ALL=(ALL:ALL) ALL`

			`# Allow members of group admin to execute any command`
			`%admin ALL=(ALL:ALL) ALL`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Hii inamaanisha kwamba mtumiaji yeyote ambaye ni mwanachama wa kikundi cha sudo au admin anaweza kutekeleza chochote kama sudo.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Ikiwa hii ndiyo hali, ili kuwa root unaweza tu kutekeleza:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```text
			`sudo su`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`## PE - Njia 2`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Tafuta programu-jalizi zote za suid na angalia kama kuna programu-jalizi ya Pkexec:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`find / -perm -4000 2>/dev/null`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Ikiwa utagundua kuwa faili ya binary ya pkexec ni faili ya SUID na wewe ni mwanachama wa sudo au admin, huenda uweze kutekeleza faili za binary kama sudo kwa kutumia pkexec.`
			`Angalia maudhui ya:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`cat /etc/polkit-1/localauthority.conf.d/*`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Hapo utapata kikundi gani kinaruhusiwa kutekeleza pkexec na kwa chaguo-msingi katika baadhi ya linux inaweza kuonekana baadhi ya vikundi sudo au admin.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Kuwa root unaweza kutekeleza:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`pkexec "/bin/sh" #You will be prompted for your user password`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Ikiwa unajaribu kutekeleza pkexec na unapata kosa hili:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`polkit-agent-helper-1: error response to PolicyKit daemon: GDBus.Error:org.freedesktop.PolicyKit1.Error.Failed: No session for cookie`
			`==== AUTHENTICATION FAILED ===`
			`Error executing command as another user: Not authorized`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Sio kwa sababu huna ruhusa lakini ni kwa sababu hauko na uhusiano bila GUI. Na kuna suluhisho kwa shida hii hapa: [https://github.com/NixOS/nixpkgs/issues/18012\#issuecomment-335350903](https://github.com/NixOS/nixpkgs/issues/18012#issuecomment-335350903). Unahitaji vikao vya ssh 2 tofauti:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`{% code title="kikao1" %}`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`echo $$ #Step1: Get current PID`
			`pkexec "/bin/bash" #Step 3, execute pkexec`
			`#Step 5, if correctly authenticate, you will have a root session`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`{% code title="kikao2" %}`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`pkttyagent --process <PID of session1> #Step 2, attach pkttyagent to session1`
			`#Step 4, you will be asked in this session to authenticate to pkexec`
			```
			`{% endcode %}`

Translated to Swahili 2024-02-11 02:13:58 +00:00			`# Kikundi cha Wheel`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Marafiki, kwa chaguo-msingi ndani ya faili ya /etc/sudoers unaweza kupata mstari huu:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```text
			`%wheel ALL=(ALL:ALL) ALL`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Hii inamaanisha kwamba mtumiaji yeyote ambaye ni mwanachama wa kikundi cha wheel anaweza kutekeleza chochote kama sudo.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Ikiwa hii ndiyo hali, ili kuwa root unaweza tu kutekeleza:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```text
			`sudo su`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`# Kikundi cha Shadow`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Watumiaji kutoka kikundi cha shadow wanaweza kusoma faili ya /etc/shadow:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```text
			`-rw-r----- 1 root shadow 1824 Apr 26 19:10 /etc/shadow`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Basi, soma faili na jaribu kuvunja baadhi ya hashi.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`# Kikundi cha Diski`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Haki hii ni karibu sawa na ufikiaji wa root kwa sababu unaweza kupata data yote ndani ya kifaa.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			Faili: `/dev/sd[a-z][1-9]`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```text
			`debugfs /dev/sda1`
			`debugfs: cd /root`
			`debugfs: ls`
			`debugfs: cat /root/.ssh/id_rsa`
			`debugfs: cat /etc/shadow`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			Tafadhali kumbuka kwamba kwa kutumia debugfs unaweza pia kuandika faili. Kwa mfano, ili kuiga `/tmp/asd1.txt` kwenda `/tmp/asd2.txt` unaweza kufanya:
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`debugfs -w /dev/sda1`
			`debugfs: dump /tmp/asd1.txt /tmp/asd2.txt`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			Hata hivyo, ikiwa unajaribu kuandika faili zinazomilikiwa na root \(kama vile `/etc/shadow` au `/etc/passwd`\), utapata kosa la "Ruhusa imekataliwa".
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`# Kikundi cha Video`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			Kwa kutumia amri `w` unaweza kupata nani ameingia kwenye mfumo na itaonyesha matokeo kama ifuatavyo:
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT`
			`yossi tty1 22:16 5:13m 0.05s 0.04s -bash`
			`moshe pts/1 10.10.14.44 02:53 24:07 0.06s 0.06s /bin/bash`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`tty1 inamaanisha kuwa mtumiaji yossi ameingia kimwili kwenye kifaa cha terminal kwenye kompyuta.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			Kikundi cha video kina ruhusa ya kuona matokeo ya skrini. Kimsingi unaweza kuangalia skrini hizo. Ili kufanya hivyo, unahitaji kunasa picha ya sasa kwenye skrini kwa njia ya data safi na kupata azimio ambalo skrini inatumia. Data ya skrini inaweza kuokolewa kwenye `/dev/fb0` na unaweza kupata azimio la skrini hii kwenye `/sys/class/graphics/fb0/virtual_size`.
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`cat /dev/fb0 > /tmp/screen.raw`
			`cat /sys/class/graphics/fb0/virtual_size`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			Kuifungua picha ya asili unaweza kutumia GIMP, chagua faili ya `screen.raw` na chagua aina ya faili kuwa Raw image data:
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
			`![](../../.gitbook/assets/image%20%28208%29.png)`

Translated to Swahili 2024-02-11 02:13:58 +00:00			`Kisha badilisha upana na urefu kuwa ule unaotumiwa kwenye skrini na angalia aina tofauti za picha (na chagua ile inayoonyesha skrini vizuri zaidi):`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
			`![](../../.gitbook/assets/image%20%28295%29.png)`

Translated to Swahili 2024-02-11 02:13:58 +00:00			`# Kikundi cha Root`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Inaonekana kwa chaguo-msingi wanachama wa kikundi cha root wanaweza kupata ufikiaji wa kubadilisha baadhi ya faili za mipangilio ya huduma au baadhi ya faili za maktaba au vituko vingine vya kuvutia ambavyo vinaweza kutumika kuongeza mamlaka...`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Angalia ni faili zipi wanachama wa root wanaweza kubadilisha:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`find / -group root -perm -g=w 2>/dev/null`
			```
Translated to Swahili 2024-02-11 02:13:58 +00:00			`# Kikundi cha Docker`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			Unaweza kufunga mfumo wa faili wa mwenyeji kwenye kiasi cha kifaa, kwa hivyo wakati kifaa kinaanza, kinapakia mara moja `chroot` kwenye kiasi hicho. Hii kimsingi inakupa udhibiti kamili wa mfumo.
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
			`{% embed url="https://github.com/KrustyHack/docker-privilege-escalation" %}`

			`{% embed url="https://fosterelli.co/privilege-escalation-via-docker.html" %}`

Translated to Swahili 2024-02-11 02:13:58 +00:00			`# Kikundi cha lxc/lxd`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`[lxc - Kupandisha Hadhi ya Uteuzi](lxd-privilege-escalation.md)`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00

			`<details>`

Translated to Swahili 2024-02-11 02:13:58 +00:00			`<summary><strong>Jifunze kuhusu kudukua AWS kutoka sifuri hadi shujaa na</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`Njia nyingine za kusaidia HackTricks:`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Swahili 2024-02-11 02:13:58 +00:00			`* Ikiwa unataka kuona kampuni yako inatangazwa kwenye HackTricks au kupakua HackTricks kwa muundo wa PDF Angalia [MPANGO WA KUJIUNGA](https://github.com/sponsors/carlospolop)!`
			`* Pata [swag rasmi wa PEASS & HackTricks](https://peass.creator-spring.com)`
			`* Gundua [The PEASS Family](https://opensea.io/collection/the-peass-family), mkusanyiko wetu wa [NFTs](https://opensea.io/collection/the-peass-family) ya kipekee`
			`* Jiunge na 💬 [Kikundi cha Discord](https://discord.gg/hRep4RUj7f) au [kikundi cha telegram](https://t.me/peass) au tufuate kwenye Twitter 🐦 [@carlospolopm](https://twitter.com/hacktricks_live).`
			`* Shiriki mbinu zako za kudukua kwa kuwasilisha PR kwa [HackTricks](https://github.com/carlospolop/hacktricks) na [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github repos.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`