Tcpdump Privilege Escalation
Requirements:
1) If we find an interesting process that runs in the background, we can sniff traffic for cleartext credentials
tcpdump -i any port PORT -w network_traffic.pcap2) Leave it for a few minutes
3) Transfer the .pcap file, then analyse traffic with Wireshark
wireshark -r network_traffic.pcapLast updated