查找具有SUID权限位且文件属主为root的文件。
find / -perm -u=s -type f 2>/dev/nullfind / -user root -perm -4000 -exec ls -ldb {} \;查找具有SUID权限位且文件属主为root的文件,且本网站有记录利用方式的。
find / -perm -u=s -type f 2>/dev/null | grep -E '/7z$|/aa-exec$|/ab$|/agetty$|/alpine$|/ansible-playbook$|/ansible-test$|/aoss$|/apache2ctl$|/apt-get$|/apt$|/ar$|/aria2c$|/arj$|/arp$|/as$|/ascii-xfr$|/ascii85$|/ash$|/aspell$|/atobm$|/awk$|/aws$|/base32$|/base58$|/base64$|/basenc$|/basez$|/bash$|/batcat$|/bc$|/bconsole$|/bpftrace$|/bridge$|/bundle$|/bundler$|/busctl$|/busybox$|/byebug$|/bzip2$|/c89$|/c99$|/cabal$|/cancel$|/capsh$|/cat$|/cdist$|/certbot$|/check_by_ssh$|/check_cups$|/check_log$|/check_memory$|/check_raid$|/check_ssl_cert$|/check_statusfile$|/chmod$|/choom$|/chown$|/chroot$|/clamscan$|/cmp$|/cobc$|/column$|/comm$|/composer$|/cowsay$|/cowthink$|/cp$|/cpan$|/cpio$|/cpulimit$|/crash$|/csh$|/csplit$|/csvtool$|/cupsfilter$|/curl$|/cut$|/dash$|/date$|/dc$|/dd$|/debugfs$|/dialog$|/diff$|/dig$|/distcc$|/dmesg$|/dmidecode$|/dmsetup$|/dnf$|/docker$|/dos2unix$|/dosbox$|/dotnet$|/dpkg$|/dstat$|/dvips$|/easy_install$|/eb$|/ed$|/efax$|/elvish$|/emacs$|/enscript$|/env$|/eqn$|/espeak$|/ex$|/exiftool$|/expand$|/expect$|/facter$|/file$|/find$|/finger$|/fish$|/flock$|/fmt$|/fold$|/fping$|/ftp$|/gawk$|/gcc$|/gcloud$|/gcore$|/gdb$|/gem$|/genie$|/genisoimage$|/ghc$|/ghci$|/gimp$|/ginsh$|/git$|/grc$|/grep$|/gtester$|/gzip$|/hd$|/head$|/hexdump$|/highlight$|/hping3$|/iconv$|/iftop$|/install$|/ionice$|/ip$|/irb$|/ispell$|/jjs$|/joe$|/join$|/journalctl$|/jq$|/jrunscript$|/jtag$|/julia$|/knife$|/ksh$|/ksShell$|/ksu$|/kubectl$|/latex$|/latexmk$|/ld.so$|/ldconfig$|/less$|/lftp$|/links$|/ln$|/loginctl$|/logsave$|/look$|/lp$|/ltrace$|/lua$|/lualatex$|/luatex$|/lwp-download$|/lwp-request$|/mail$|/make$|/man$|/mawk$|/minicom$|/more$|/mosquitto$|/msfconsole$|/msgattrib$|/msgcat$|/msgconv$|/msgfilter$|/msgmerge$|/msguniq$|/mtr$|/multitime$|/mv$|/mysql$|/nano$|/nasm$|/nawk$|/nc$|/ncdu$|/ncftp$|/neofetch$|/nft$|/nice$|/nl$|/nm$|/nmap$|/node$|/nohup$|/npm$|/nroff$|/nsenter$|/ntpdate$|/octave$|/od$|/openssl$|/openvpn$|/openvt$|/opkg$|/pandoc$|/paste$|/pax$|/pdb$|/pdflatex$|/pdftex$|/perf$|/perl$|/perlbug$|/pexec$|/pg$|/php$|/pic$|/pico$|/pidstat$|/pip$|/pkg$|/posh$|/pr$|/pry$|/psftp$|/psql$|/ptx$|/puppet$|/pwsh$|/python$|/rake$|/rc$|/readelf$|/red$|/redcarpet$|/redis$|/restic$|/rev$|/rlogin$|/rlwrap$|/rpm$|/rpmdb$|/rpmquery$|/rpmverify$|/rsync$|/rtorrent$|/ruby$|/run-mailcap$|/run-parts$|/runscript$|/rview$|/rvim$|/sash$|/scanmem$|/scp$|/screen$|/script$|/scrot$|/sed$|/service$|/setarch$|/setfacl$|/setlock$|/sftp$|/sg$|/shuf$|/slsh$|/smbclient$|/snap$|/socat$|/socket$|/soelim$|/softlimit$|/sort$|/split$|/sqlite3$|/sqlmap$|/ss$|/ssh-agent$|/ssh-keygen$|/ssh-keyscan$|/ssh$|/sshpass$|/start-stop-daemon$|/stdbuf$|/strace$|/strings$|/Sudo$|/sysctl$|/systemctl$|/systemd-resolve$|/tac$|/tail$|/tar$|/task$|/taskset$|/tasksh$|/tbl$|/tclsh$|/tcpdump$|/tdbtool$|/tee$|/telnet$|/terraform$|/tex$|/tftp$|/tic$|/time$|/timedatectl$|/timeout$|/tmate$|/tmux$|/top$|/torify$|/torsocks$|/troff$|/tshark$|/ul$|/unexpand$|/uniq$|/unshare$|/unsquashfs$|/unzip$|/update-alternatives$|/uudecode$|/uuencode$|/vagrant$|/valgrind$|/varnishncsa$|/vi$|/view$|/vigr$|/vim$|/vimdiff$|/vipw$|/virsh$|/volatility$|/w3m$|/wall$|/watch$|/wc$|/wget$|/whiptail$|/whois$|/wireshark$|/wish$|/xargs$|/xdg-user-dir$|/xdotool$|/xelatex$|/xetex$|/xmodmap$|/xmore$|/xpad$|/xxd$|/xz$|/yarn$|/yash$|/yelp$|/yum$|/zathura$|/zip$|/zsh$|/zsoelim$|/zypper$'