Весь Linux. Для тех, кто хочет стать профессионалом, Матвеев М. Д., 2024

Эта книга содержит в себе как теоретические, так и практические материалы по Linux, тем самым вы сразу сможете использовать полученную теорию на практике.

Диапазон рассматриваемых тем достаточно широк: – Установка системы, вход и завершение работы, настройка системы, основы командной строки; – Настройка Интернета, установка программного обеспечения, обзор популярных программ для Linux, как запускать Windows-приложения в Linux; – Локальное администрирование в Linux, управление файловыми системами, что такое и для чего нужно Ядро Linix, системные процессы и основные группы пользователей; – Администрирование Linux-сервера, настройка серверов DNS, SSH, DHCP, FTP, интеграция сервера в Windows-сеть, маршрутизация и настройка брандмауэра, почему так важно резервное копирование, выбор и установка панели управления, как обеспечить безопасность сервера, защита веб-сервера от сетевых атак. В дополнительных приложениях будут рассмотрены командный интерпретатор bash и сетевая файловая система NFS.

#book #linux #newbie

Attacking active directory with Linux by Hernan Rodriguez, 2025

Attacking Active Directory with Linux (LinuxAD) is a training environment and playground.

“From linux everything is fine”

Extra:
❗️AD attack library

#linux #pentest #windows

Справочник линуксоида. Все, что нужно, под рукой, Матвеев М. Д., 2023

В этом справочнике вы найдете ключевую информацию об операционной системе Linux в удобной и наглядной форме. Структура справочника позволяет линуксоидам быстро находить нужную информацию, получать примеры использования тех или иных элементов Linux.

Диапазон материалов справочника достаточно широк: от самых основ (командная строка, локальная сеть, файловая система, пользователи и группы) до более продвинутых тем (управление загрузкой ос, работа с хранилищем, управление процессами Linux).

Отдельное внимание уделено внимание таким важным темам, как: ядро Linux, маршрутизация и настройка брандмауэра, командный интерпретатор bash.Книга будет полезна как начинающим линуксоидам, так и более опытным пользователям, которым в процессе работы в Linux нужна информация под рукой.

#book #linux #newbie

The First Step in Incident Response on Linux by Jeenali Kothari, 2025

Detecting any intrusion in your system is a very important step towards Incident response. Incident response is quite vast, but it is always better to start small. While performing incident response, you should always focus on suspected systems and the areas where it seems there could be a breach. Making use of Incident Response, you could detect a large number of attacks at the primary level.

The purpose of incident response is nothing but Live Forensics. The investigation can be carried out to obtain any digital evidence. This article mainly focuses on how incident response can be performed in a Linux system. So, to get you started with this cheat sheet, switch on your Linux machine and open the terminal to accomplish these commands.

#forensic #linux

SSH Hardening & Offensive Mastery, by Diego Ruiz de Bucesta y Álvarez, 2025

The book is a comprehensive guide for cybersecurity professionals aiming to master both the defensive and offensive realms of SSH protocol security.

✅ Practical methods to harden SSH services
🛡 Defensive measures like two-factor authentication, Fail2Ban, and Suricata
⚔️ Offensive tactics including hijacking, malware injection, and tunnel-based pivoting
📉 Analysis of real-world threats such as Terrapin (CVE-2023-48795)
🧠 A strategic approach to understanding vulnerabilities and securing remote systems

It’s not just another checklist—this book is a hands-on tool for building deep, operational security knowledge across red and blue team environments. Perfect for IT pros, students, and anyone intrigued by the cypherpunk spirit.

#book #linux #defensive

Linux Fundamentals for beginners

This Linux Fundamentals for Beginners guide is the perfect starting point practical, hands-on, and packed with real terminal examples to get you confident in command-line navigation, file operations, and system management.

#linux #newbie

💻 Linux Server Configuration The Hidden Skill That Separates Junior Engineers from Real Engineers

In cybersecurity and DevSecOps, people talk a lot about cloud, AI, orchestration, Kubernetes… But very few talk about the backbone behind every secure infrastructure: 👉 Linux system administration.

This guide covers fundamentals that every modern engineer should master:
🔹 bash fundamentals
🔹 filesystem management (mount/umount, fstab)
🔹 file permissions (chmod, chown, sticky bits, setgid)
🔹 system processes (ps, top, pstree, signals)
🔹 package management (apt, rpm, bin installers)
🔹 NFS, Samba, DNS, DHCP, FTP
🔹 Apache2, MySQL, Postfix
🔹 Archiving & compression (tar, gzip, bzip2)

Whether you're a penetration tester, DevOps engineer, security architect, or backend developer Linux is your operating theater. If you don’t understand it deeply, you can’t secure it deeply.

#linux

🧱 IPTables, Demystified — Linux Firewall Fundamentals for Blue Teams

If you’re in SysAdmin, DevSecOps, Cloud, SOC, or Network Security, this is core knowledge for traffic control, segmentation, and incident response on Linux hosts.

🧠 What the Guide Breaks Down

1️⃣ Firewall Architecture 101
External vs internal firewalls and where IPTables fits
Stateful inspection & connection tracking in plain language

2️⃣ How IPTables Is Structured
Tables: filter, nat, mangle, raw, security
Chains: INPUT, OUTPUT, FORWARD, etc.
How a packet actually travels through the kernel routing path

3️⃣ Building Real Rules (Not Just Copy-Paste)
Why a default DROP policy is your safest baseline
Letting only ESTABLISHED and RELATED traffic through
Handling loopback, DHCP, SSH, FTP/TFTP the right way
From zero to “basic firewall deployed & persistent”

4️⃣ Advanced Topics for Practitioners
Connection tracking with conntrack
Passive vs active FTP nuances
Tuning modules and limits (e.g. nf_conntrack_max, timeouts, NAT helpers)

#linux #defensive

Linux Privilege Escalation

Linux Privilege Escalation — The Skill Every Cybersecurity Professional Must Master in 2025

I just reviewed one of the most comprehensive Linux PrivEsc guides I’ve seen and it’s packed with real techniques attackers actually use in real breaches. If you work in Red Teaming, Pentesting, Threat Hunting, SOC, DFIR or even Cloud this is the kind of knowledge that separates beginners from true professionals.

🧠 What the PDF Covers (and Why It Matters)

🔹 Deep Enumeration: kernel version, sudo rights, SUID/SGID binaries, environment variables, cronjobs, backups, hidden files, services, shells (pages 1–3)
🔹 Automated Enum: LinEnum, LinPEAS, enumy, linuxprivchecker (page 4)
🔹 Kernel Exploits: searchsploit + exploit suggester (page 4)
🔹 Weak Permissions Abuse: /etc/shadow, /etc/passwd, binary overwrites (pages 5–6)
🔹 Credential Harvesting: history grep, config leakage, memory dump tools like mimipenguin (page 6)
🔹 Docker & LXD Breakouts: mounting host FS, privilege containers (pages 7–8)
🔹 SUID/SGID Exploits: PATH hijacking, shared object injection, cron abuse (pages 9–10)
🔹 LD_PRELOAD / LD_LIBRARY_PATH attacks: hijacking libraries to spawn root shells (pages 11–13)
🔹 Python Module Hijacking: creating fake modules to escalate privileges (page 14)
🔹 GTFOBins techniques the ultimate misconfiguration weapon (multiple pages)
🔹 NFS no_root_squash exploitation (page 17)
🔹 Session Hijacking (screen/tmux) (pages 18–19)
🔹 Reverse Shell Hijacking (page 20)

This is not theory ✨ these are the exact paths attackers use after initial access. If you can’t detect or replicate them, you can’t defend against them.

My biggest takeaway:
Privilege escalation isn’t a toolset it’s a mindset of finding one misconfiguration that changes everything.

#linux