Checklist
Step-by-step enumeration and pillaging checklist for every Linux box.
System Enumeration
Find users, services, kernel details, and the most likely privilege
escalation paths.
User & Group Management
Accounts, groups, sudo rights, and user-based attack paths.
Authentication & Authorization
PAM, /etc/passwd, /etc/shadow, SSH keys, and sudo.
Permission Analysis
Read/write/execute, SUID/SGID, and permission misconfigurations.
Process & Service Management
Running processes, systemd services, cron, and service attack surface.
Network Configuration
Interfaces, routing, pivot points, and reachable hosts.
Finding Files & Directories
Search the filesystem for credentials, configs, and sensitive data.
Storage & Devices
Disks, partitions, mount points, and device files.
System Logs
Log sources, detection surface, and evidence you need to cover.
Output Filtering & Text Processing
grep, awk, sed, cut, and shell pipelines for extracting the signal.
Security & Hardening
SELinux, AppArmor, patch posture, and hardening gaps.
Pillaging
Extract credentials, secrets, and sensitive data once you have access.
Bash Scripting
Variables, loops, functions, and practical automation patterns.