GITBOOK-3859: change request with no subject merged in GitBook

2023-04-05 05:42:25 +00:00 · 2023-04-05 05:42:25 +00:00 · 45fc3b60ae
parent 4acccd37af
commit 45fc3b60ae
2 changed files with 9 additions and 9 deletions
--- a/SUMMARY.md
+++ b/SUMMARY.md
@ -88,26 +88,26 @@
  * [Cisco - vmanage](linux-hardening/privilege-escalation/cisco-vmanage.md)
  * [Containerd (ctr) Privilege Escalation](linux-hardening/privilege-escalation/containerd-ctr-privilege-escalation.md)
  * [Docker Basics & Breakout](linux-hardening/privilege-escalation/docker-breakout/README.md)
+    * [Abusing Docker Socket for Privilege Escalation](linux-hardening/privilege-escalation/docker-breakout/abusing-docker-socket-for-privilege-escalation.md)
+    * [AppArmor](linux-hardening/privilege-escalation/docker-breakout/apparmor.md)
    * [AuthZ& AuthN - Docker Access Authorization Plugin](linux-hardening/privilege-escalation/docker-breakout/authz-and-authn-docker-access-authorization-plugin.md)
+    * [CGroups](linux-hardening/privilege-escalation/docker-breakout/cgroups.md)
+    * [Docker --privileged](linux-hardening/privilege-escalation/docker-breakout/docker-privileged.md)
    * [Docker Breakout / Privilege Escalation](linux-hardening/privilege-escalation/docker-breakout/docker-breakout-privilege-escalation/README.md)
      * [release\_agent exploit - Relative Paths to PIDs](linux-hardening/privilege-escalation/docker-breakout/docker-breakout-privilege-escalation/release\_agent-exploit-relative-paths-to-pids.md)
      * [Docker release\_agent cgroups escape](linux-hardening/privilege-escalation/docker-breakout/docker-breakout-privilege-escalation/docker-release\_agent-cgroups-escape.md)
      * [Sensitive Mounts](linux-hardening/privilege-escalation/docker-breakout/docker-breakout-privilege-escalation/sensitive-mounts.md)
-    * [Seccomp](linux-hardening/privilege-escalation/docker-breakout/seccomp.md)
-    * [AppArmor](linux-hardening/privilege-escalation/docker-breakout/apparmor.md)
    * [Namespaces](linux-hardening/privilege-escalation/docker-breakout/namespaces/README.md)
+      * [CGroup Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/cgroup-namespace.md)
+      * [IPC Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/ipc-namespace.md)
      * [PID Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/pid-namespace.md)
      * [Mount Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/mount-namespace.md)
      * [Network Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/network-namespace.md)
-      * [IPC Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/ipc-namespace.md)
      * [Time Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/time-namespace.md)
-      * [UTS Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/uts-namespace.md)
-      * [CGroup Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/cgroup-namespace.md)
      * [User Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/user-namespace.md)
-    * [CGroups](linux-hardening/privilege-escalation/docker-breakout/cgroups.md)
+      * [UTS Namespace](linux-hardening/privilege-escalation/docker-breakout/namespaces/uts-namespace.md)
+    * [Seccomp](linux-hardening/privilege-escalation/docker-breakout/seccomp.md)
    * [Weaponizing Distroless](linux-hardening/privilege-escalation/docker-breakout/weaponizing-distroless.md)
-    * [Docker --privileged](linux-hardening/privilege-escalation/docker-breakout/docker-privileged.md)
-    * [Abusing Docker Socket for Privilege Escalation](linux-hardening/privilege-escalation/docker-breakout/abusing-docker-socket-for-privilege-escalation.md)
  * [Escaping from Jails](linux-hardening/privilege-escalation/escaping-from-limited-bash.md)
  * [euid, ruid, suid](linux-hardening/privilege-escalation/euid-ruid-suid.md)
  * [Logstash](linux-hardening/privilege-escalation/logstash.md)
--- a/linux-hardening/privilege-escalation/docker-breakout/docker-breakout-privilege-escalation/README.md
+++ b/linux-hardening/privilege-escalation/docker-breakout/docker-breakout-privilege-escalation/README.md
@ -515,7 +515,7 @@ If you only have `hostIPC=true`, you most likely can't do much. If any process o
 If the syscall **`unshare`** is not forbidden you can recover all the capabilities running:

 ```bash
-unshare -UrmC
+unshare -UrmCpf bash
 # Check them with
 cat /proc/self/status | grep CapEff
 ```