killchain-compendium/exploit/linux/sudo/tokens.md

# Reusing Sudo Token

* Reuse sudo token of currently logged in user
* [Hacktricks' site](https://book.hacktricks.xyz/linux-hardening/privilege-escalation#reusing-sudo-tokens)

* `ptrace` has to be fully enabled
```sh
cat /proc/sys/kernel/yama/ptrace_scope
0
```
* sudo has to be triggered the last 15 minutes, check `ps wuax`
* `gdb` has to be installed
* One must be logged in as the same user which should be owned
* Use [nongiach's exploit](https://github.com/nongiach/sudo_inject)
AD stuff 2022-07-06 22:49:06 +02:00			`# Reusing Sudo Token`

			`* Reuse sudo token of currently logged in user`
			`* [Hacktricks' site](https://book.hacktricks.xyz/linux-hardening/privilege-escalation#reusing-sudo-tokens)`

			* `ptrace` has to be fully enabled
			```sh
			`cat /proc/sys/kernel/yama/ptrace_scope`
			`0`
			```
			* sudo has to be triggered the last 15 minutes, check `ps wuax`
			* `gdb` has to be installed
			`* One must be logged in as the same user which should be owned`
			`* Use [nongiach's exploit](https://github.com/nongiach/sudo_inject)`