TryHackMe Linux Privilege Escalation - Full Walkthrough 2025

🎯🐧🐧🎯 Learn the fundamentals of Linux privilege escalation. From enumeration to exploitation, get hands-on with over 8 different privilege escalation techniques.🐧🐧 Room Link: https://tryhackme.com/room/linprivesc 🐱 🐧Room Tasks: 🐱🐧 [00:00:00] 🦊Task 1: Introduction [00:01:51] 🦊Task 2: What is Privilege Escalation? [00:02:11] 🦊Task 3: Enumeration - What is the hostname of the target system? - What is the Linux kernel version of the target system? - What Linux is this? - What version of the Python language is installed on the system? - What vulnerability seem to affect the kernel of the target system? (Enter a CVE number) [00:25:50] 🦊Task 4: Automated Enumeration Tools [00:27:32] 🦊Task 5: Privilege Escalation: Kernel Exploits - find and use the appropriate kernel exploit to gain root privileges on the target system. - What is the content of the flag1.txt file? [00:39:24] 🦊Task 6: Privilege Escalation: Sudo - How many programs can the user "karen" run on the target system with sudo rights? - What is the content of the flag2.txt file? - How would you use Nmap to spawn a root shell if your user had sudo rights on nmap? - What is the hash of frank's password? [00:53:00] 🦊Task 7: Privilege Escalation: SUID - Which user shares the name of a great comic book writer? - What is the password of user2? -What is the content of the flag3.txt file? [01:07:21] 🦊Task 8: Privilege Escalation: Capabilities - How many binaries have set capabilities? - What other binary can be used through its capabilities? - What is the content of the flag4.txt file? [01:21:06]🦊Task 9: Privilege Escalation: Cron Jobs - How many user-defined cron jobs can you see on the target system? - What is the content of the flag5.txt file? - What is Matt's password? [01:48:23] 🦊Task 10: Privilege Escalation: PATH - What is the odd folder you have write access for? - Exploit the $PATH vulnerability to read the content of the flag6.txt file. - What is the content of the flag6.txt file? [02:04:24] 🦊Task 11: Privilege Escalation: NFS - How many mountable shares can you identify on the target system? - How many shares have the "no_root_squash" option enabled? - Gain a root shell on the target system - What is the content of the flag7.txt file? [02:17:04] 🦊Task 12: Capstone Challenge - What is the content of the flag1.txt file? - What is the content of the flag2.txt file? ⚠️ Educational Purpose Only This content is for educational and authorized penetration testing purposes only. Always ensure you have permission before testing on any systems. #tryhackme