Skip to content

Hide Navigation Hide TOC

Cat Sudoers (0f79c4d2-4e1f-4683-9c36-b5469a665e06)

Detects the execution of a cat /etc/sudoers to list all users that have sudo rights

Cluster A Galaxy A Cluster B Galaxy B Level
Client Configurations - T1592.004 (774ad5bb-2366-4c13-a8a9-65e50b292e7c) Attack Pattern Cat Sudoers (0f79c4d2-4e1f-4683-9c36-b5469a665e06) Sigma-Rules 1
Gather Victim Host Information - T1592 (09312b1a-c3c6-4b45-9844-3ccc78e5d82f) Attack Pattern Client Configurations - T1592.004 (774ad5bb-2366-4c13-a8a9-65e50b292e7c) Attack Pattern 2