-
Notifications
You must be signed in to change notification settings - Fork 553
Evaluate: Mounts
cdxy edited this page Nov 24, 2020
·
1 revision
检查挂载到当前容器内的目录和文件,一些挂载到容器内部的敏感目录如/etc,/root等可以提供逃逸机会,如将恶意代码写入/etc/crontab或/root/.ssh/authorized_keys.
Print directories and files which mounted to container. Some sensitive such as /etc,/root will offer you a chance to escape current container by modifying /etc/crontab or /root/.ssh/authorized_keys.
See also: https://github.com/Xyntax/CDK/wiki/Exploit:-mount-procfs
cdk evaluate