HackTricks

Our new course LHE (Linux Hardening Expert) is out now - Learn Linux security from the basics to advanced hardening: permissions, authentication, network defense, misconfigurations, and privilege escalation—featuring everyone’s favorite tool, LinPEAS from Carlos P.. Check it out and enroll now at https://lnkd.in/eEx349UM Now, let’s test your Linux hardening knowledge with a quick quiz: A namespace is a Linux feature that isolates resources like processes. The PID namespace controls process visibility, with PID 1 as its root. When a container runs with --pid=host, it shares the host’s PID view and can see all host processes.

LinPEAS is now capable of detecting if a machine is vulnerable to Copy Fail vuln (CVE-2026-31431). Enjoy it! https://lnkd.in/eVm7q9FT

7 years ago, I promised a Linux Privilege Escalation course focused on mastering LinPEAS. It took longer than expected… but it’s finally here! This weekend we’re launching LHE — Linux Hardening Expert, the new expert-level certification at HackTricks Training. Inside the course, you’ll learn how to understand, exploit, and harden Linux systems using real-world techniques and tooling, including LinPEAS. And for the pre-release, we’re making it available at an apprentice-level price plus extra 20% off for a limited time. Get early access here: https://lnkd.in/e-EQecKE

🚀 New course launch at HackTricks Training: Linux Hardening Expert This certification takes you from foundational Linux security to advanced hardening and privilege escalation, covering: • permissions and access control • authentication, encryption, and network security • misconfigurations and defensive layering across common services and distros • secure configuration, isolation, and kernel protections • privilege escalation enumeration with tools like LinPEAS What’s included: • 60 days of lab access (extendable) • 20+ reading materials + video lessons • 70+ hours estimated completion time • 120+ hands-on labs • 1 exam The regular price will be €359, but until May 1st (23:59 CET) you can get it with a 20% pre-launch discount, already applied in the website. Course access starts on May 2nd, 2026. Learn more: https://lnkd.in/eEx349UM #Linux #LinuxSecurity #CyberSecurity #PrivilegeEscalation #PEASS #LinPEAS #SystemHardening

New HackTricks Tools available at https://lnkd.in/eSkRVK9F - If you think a HT page is outdated, with the new HT researcher tool you can now request an agent to update any page - Are you putting HackTricks in a RAG? Use our API to get best matches without building your own infra - HT AI chatbot is now available through API - And many more tools! We have also released the "Pentester" plan for the people that need to increase their limits, but every tool has a free tier you can use! #hacking #tools

Project Glasswing spent $20,000 to find one unknown vuln. But at Naxus, we’ve been discovering unknown critical vulns for over 2 years in scans that often cost less than $50. Why? Because zero-day discovery is not about having some magical unreleased model. It’s about properly building AI agents that know where to look, what to prioritize, and how to validate what they find to maximize the vulns reducing the costs. Naxus is built to locate the most sensitive and attackable parts of a codebase, go deep on them, and dynamically test the results to drive false positives close to zero. We’re also releasing https://audit-my-code.com/, where anyone can submit a public GitHub repo plus an email and get a free audit powered by Naxus (with some restrictions). And if you want the full power of the platform, check the paid plans at https://naxusai.com/

☁️ AZURE SECURITY QUIZ In Entra ID IAM, role assignments and federated creds are where it gets serious. Exact perms: 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁.𝗔𝘂𝘁𝗵𝗼𝗿𝗶𝘇𝗮𝘁𝗶𝗼𝗻/𝗿𝗼𝗹𝗲𝗔𝘀𝘀𝗶𝗴𝗻𝗺𝗲𝗻𝘁𝘀/𝘄𝗿𝗶𝘁𝗲, 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁.𝗔𝘂𝘁𝗵𝗼𝗿𝗶𝘇𝗮𝘁𝗶𝗼𝗻/𝗿𝗼𝗹𝗲𝗘𝗹𝗶𝗴𝗶𝗯𝗶𝗹𝗶𝘁𝘆𝗦𝗰𝗵𝗲𝗱𝘂𝗹𝗲𝗥𝗲𝗾𝘂𝗲𝘀𝘁𝘀/𝘄𝗿𝗶𝘁𝗲, 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁.𝗠𝗮𝗻𝗮𝗴𝗲𝗱𝗜𝗱𝗲𝗻𝘁𝗶𝘁𝘆/𝘂𝘀𝗲𝗿𝗔𝘀𝘀𝗶𝗴𝗻𝗲𝗱𝗜𝗱𝗲𝗻𝘁𝗶𝘁𝗶𝗲𝘀/𝗳𝗲𝗱𝗲𝗿𝗮𝘁𝗲𝗱𝗜𝗱𝗲𝗻𝘁𝗶𝘁𝘆𝗖𝗿𝗲𝗱𝗲𝗻𝘁𝗶𝗮𝗹𝘀/𝘄𝗿𝗶𝘁𝗲. Links: - HackTricks Cloud: https://lnkd.in/enZrKEtQ - Training: https://lnkd.in/ednFXree

🐉 ¡Atención guerreros Z! 💻 Te presentamos el Capture The Flag (CTF) de Hackén IV, impulsado por The Hackers Labs. Demuestra tu poder, escala el ranking y conquista la cima. 🏆 ¡El podio tiene premio! 🏆 Los ganadores recibirán 1 certificación de HackTricks, asignadas y elegidas por orden de clasificación del podio. No te quedes fuera de esta gran batalla. 🏆 Recuerda que las entradas se están agotando rápidamente. ¡Te esperamos para liberar tu potencial! Consigue la tuya aquí: https://lnkd.in/eQts6WQm 🐉 El próximo 17-18 de abril, únete a la batalla en IFEJA Jaén. 💻 #HackTricks #HackénIV #Ciberseguridad #CTF #TheHackerLabs #Jaén

IAM the Captain Now 🏴☠️ In Azure, role assignment permissions carry more weight than most realize. In our latest blog, Security Consultant Justin Mahon breaks down how three write permissions can lead to unintended privilege escalation and how to keep them in check. Read it now! #Azure #CloudPenetration #blog https://hubs.la/Q04bb8zp0