rootOS – macOS Root

python root.py

Privilege escalation on OS X – without exploits

above command will add ALL ALL=(ALL) NOPASSWD: ALL to /etc/sudoers allowing any user to run sudo commands.

Phishing of MAC OS Credentials

Exploits

  • CVE-2008-2830
  • CVE-2015-3760
  • CVE-2015-5889
  • CVE-2017-13872
  • AppleScript Dynamic Phishing
  • Sudo Piggyback

 

Run

python root.py

 

Dynamic Phishing

$ git clone https://github.com/thehappydinoa/rootOS.git

Download Exploit here

 

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *