https://github.com/ait-testbed/atb-ansible-sshkeyprivesc
AECID Testbed Ansible Role to create a privesc vulnerability on a server by adding an ssh-key with weak permissions
https://github.com/ait-testbed/atb-ansible-sshkeyprivesc
aecid ansible ansible-role atb privesc testbed vulnerability
Last synced: about 2 months ago
JSON representation
AECID Testbed Ansible Role to create a privesc vulnerability on a server by adding an ssh-key with weak permissions
- Host: GitHub
- URL: https://github.com/ait-testbed/atb-ansible-sshkeyprivesc
- Owner: ait-testbed
- Created: 2023-04-20T13:39:17.000Z (about 3 years ago)
- Default Branch: main
- Last Pushed: 2023-04-20T13:40:58.000Z (about 3 years ago)
- Last Synced: 2025-07-29T12:58:34.885Z (11 months ago)
- Topics: aecid, ansible, ansible-role, atb, privesc, testbed, vulnerability
- Homepage:
- Size: 1.95 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
AECID Testbed Ansible SSH-Key Privilege Escalation
==================================================
This ansible role generates a ssh-key with weak permissions on a machine. This key is added to /root/authorized_keys
and can be used by malicious user to escalate the privileges.
Requirements
------------
No requirements
Role Variables
--------------
Install the weak key into the user-home of the following user:
```
sshkeyprivesc_user: webdev
```
** This user will be created if it does not exist **
Dependencies
------------
- Ubuntu/Debian
Example Playbook
----------------
```
- hosts: vulnserver
roles:
- role: sshkeyprivesc
vars:
sshkeyprivesc_user: johnsmith
```
License
-------
GPL-3.0
Author Information
------------------
Wolfgang Hotwagner (https://www.ait.ac.at)