Share
## https://sploitus.com/exploit?id=45FEFC8F-0DFE-5FC4-A0A0-B5EF09A3F324
# Linux Privilege Escalation Automation Toolkit

![Banner](screenshots/README_Banner/README_Banner.png)

**Detection-Only Security Auditing Framework**

## Overview
This toolkit is a professional security auditing tool designed to automatically identify privilege escalation risks on Linux systems. It focuses strictly on **detection** and **reporting** of misconfigurations, weak permissions, and outdated components.

**WARNING: This tool is for EDUCATIONAL and AUDITING purposes only. It does not perform exploitation.**

![Execution](screenshots/Toolkit%20Execution%20Initial%20Launch%20&%20Legal%20Disclaimer.png)

## Features
*   **System Enumeration**: OS, Kernel, Users, Groups.
*   **SUID/SGID Scanning**: Detects dangerous binaries and cross-references with GTFOBins.
*   **Permission Auditing**: Checks for world-writable critical files and directories.
*   **Service Analysis**: Inspects systemd services for writable configurations and executables.
*   **Sudo Analysis**: Detects dangerous `NOPASSWD` entries.
*   **Cron Job Analysis**: Identifies writable scripts executed by cron.
*   **Kernel Checks**: Flags outdated kernels and references potential CVEs.
*   **Reporting**: Generates a colorized terminal summary and a detailed Markdown report.

![System Info](screenshots/System%20Information%20Enumeration.png)

## Installation

1.  Clone the repository:
    ```bash
    git clone https://github.com/pramod-shinde-2303/linux-privesc-audit-toolkit.git
    cd linux-privesc-audit-toolkit
    ```
2.  No external dependencies required (uses standard Python libraries).

## Usage

Run the tool using Python 3:

```bash
python3 main.py
```

### SUID/SGID Discovery
![SUID SGID](screenshots/SUID%20SGID%20Binary%20Discovery%20Results.png)

### Cron & Kernel Analysis
![Cron Kernel](screenshots/Cron%20Job%20Vulnerability%20Identification%20And%20Kernel%20Version%20&%20Vulnerability%20Advisory%20Check.png)

Optional arguments:
*   `--output `: Specify a custom filename for the markdown report.
*   `--help`: Show help message.

## Output

The tool generates:
1.  **Terminal Output**: Real-time progress and a summary of high-risk findings.
2.  **Markdown Report**: Saved in the `reports/` directory with detailed findings and recommendations.

## Disclaimer
This software is provided "as is" without warranty of any kind. The author is not responsible for any damage caused by the misuse of this tool. Use responsibly and only on systems you are authorized to audit.