Skip to content
/ sudo-parser Public

sudo-parser is a tool to audit complex sudoers files

License

BSD-3-Clause license
17 stars 6 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

CiscoCXSecurity/sudo-parser

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
COPYING
COPYING
 
 
README.md
README.md
 
 
generate-banned.sh
generate-banned.sh
 
 
sudo-parser.pl
sudo-parser.pl
 
 

Repository files navigation

sudo-parser

This repository contains a tool to parse complex sudoers configurations, highlighting possible security misconfigurations.

To use this tool:

./sudo-parse.pl -f /path/to/sudoers

More complicated uses are also possible. For example, to use it to drive t0thkr1s's gtfo:

./sudo-parser.pl -f /etc/sudoers | grep "E:" | grep -v "ALL" | cut -f 2 -d " " | cut -f 2 -d: | while read commandname
do
  ./gtfo.py "$(basename "${commandname}")"
done

For any queries about the contents of this repository please contact Security Advisory EMEAR.

About

sudo-parser is a tool to audit complex sudoers files

Resources

Readme

License

BSD-3-Clause license
Activity
Custom properties

Stars

17 stars

Watchers

3 watching

Forks

6 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages