Ruben Groenewoud

## Summary This PR adds command execution capabilities to the `run-parts` binary. Run-parts is capable of executing shell scripts, which allows for proxied command execution. ``` > root@vm:/home/ruben_groenewoud# printf '#!/bin/sh\n/bin/sh...

## Summary This PR adds a new GTFOBin, `systemd-run`, which is available by-default on most distributions that leverage Systemd. It allows for spawning shells, escaping jails, uploading/downloading files, root backdoors,...

Implement a capability that scans the system for potential defenses, and disables/modifies them to more easily establish persistence.

Add a capability to allow for sudo token injection attacks, which can be an easy way to get root privileges and establish persistence.

Add a sudo hijacking capability that can read/sniff user passwords.

Mimic the persistence technique seen by `sedexp` as an addition to the current udev persistence techniques. Ref: https://www.aon.com/en/insights/cyber-labs/unveiling-sedexp

Add the capability to compile or load an LKM to establish persistence.

## Summary Use patching to patch PAM and establish persistence through a rogue module. Ensure dynamic patching, based on the distribution it is run on.

## Summary Although I find it illogical to have a rootkit built into a shell script, it could be an interesting testing opportunity for people leveraging ALPHA. Implement the feature...

## Summary Create a feature that allows users to persist through web shells in common web server technologies. Ensure compatibility with Python, Perl, PHP, Ruby and other popular languages. Ensure...