unix-privesc-check

Unix-privesc-check is a single shell script designed to detect simple privilege escalation vectors on Unix systems including Linux, Solaris, HPUX, and FreeBSD. It examines file permissions, security settings, and other configurations that could enable local unprivileged users to gain elevated privileges or access local apps like databases.

The tool is particularly useful during security assessments and penetration testing to identify privilege escalation opportunities. It can run as a normal user or root, performing more comprehensive checks when executed with elevated privileges due to increased file readability. Use is restricted to systems where legal permission for security assessment has been granted, and it is licensed under GPL v2.

Output should be searched for 'WARNING' indicators; absence of warnings means no problems were detected. The script is easy to deploy as it requires no compilation or installation beyond uploading and execution.

The script performs speed-optimized checks of security settings in standard mode, or detailed checks including open file handles, shell script parsed files, and linked .so files in detailed mode. It records system information like hostname, uname, and interface IPs, then scans for misconfigurations in file permissions and other privilege escalation vectors across the Unix filesystem and processes.