linux-lateral-movement

Community

Leverage advanced Linux lateral movement techniques in penetration tests.

AuthorProhao42
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill enables penetration testers to bypass security controls and move laterally across Linux-based systems post-compromise, identifying critical assets and exfiltrating data.

Core Features & Use Cases

  • SSH Agent Hijacking: Bypass SSH authentication to use victim credentials for lateral movement.
  • Key Harvesting: Extract and utilize private keys from the victim's environment.
  • Credential Harvesting: Harvest system, environment, and configuration credentials for lateral movement.
  • D-Bus Exploitation: Abuse systemd and PolicyKit through D-Bus services for privileged access.
  • Network Pivoting: Use SSH tunnels and alternative port forwarding to access internal networks.
  • Shared Filesystem Abuse: Exploit mounted file shares to spread laterally across networks.
  • Sudo Token Reuse: Hijack sudo sessions to maintain persistence without requiring credentials.
  • Systemd Service Manipulation: Inject code into systemd services for a persistent backdoor.

Quick Start

Run the skill with 'use linux-lateral-movement -target http://target-machine -ssh-user user -ssh-pass secret' to begin the lateral movement process on a Linux host.

Dependency Matrix

Required Modules

paramikopythonnetifacespsutilpysshparamikosshtunnel

Components

scriptsreferencesassets

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: linux-lateral-movement
Download link: https://github.com/Prohao42/aimy-skill/archive/main.zip#linux-lateral-movement

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.