`suid_binaries`#

$ target-query <path/to/target> -f suid_binaries

Details#
Module	`filesystem.unix.suid.SuidPlugin`
Output	`records`

Module documentation

No documentation

Function documentation

Return all SUID binaries.

A SUID binary allows all users to run it with the permissions of its owner. This means that a SUID binary owned by the root user can be run with root privileges by any user. Such binaries can be leveraged by an adversary to perform privilege escalation.

References:

https://steflan-security.com/linux-privilege-escalation-suid-binaries/

suid_binaries#

`suid_binaries`#