Article Per Year (5 Year)
p-Index From 2021 - 2026
0.23
P-Index
This Author published in this journals
All Journal Rekursif: Jurnal Informatika
Putra, Muhammad Willdhan Arya
Unknown Affiliation
Computer Science & IT Control & Systems Engineering Electrical & Electronics Engineering

Published : 1 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 1 Documents
Search

 1 
UJI PRIVILEGE ESCALATION PADA LAB VULNHUB LIN.SECURITY MENGGUNAKAN TACTIC FRAMEWORK PRIVILEGE ESCALATION MITRE ATT&CK DENGAN METODE INFORMATION SYSTEM SECURITY ASSESSMENT FRAMEWORK (ISSAF) Putra, Muhammad Willdhan Arya; Coastera, Funny Farady; Putri, Tiara Eka
Rekursif: Jurnal Informatika Vol 14 No 1 (2026): Volume 14 Nomor 1 Maret 2026
Publisher : Universitas Bengkulu

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.33369/rekursif.v14i1.41738

Abstract

This study aims to identify and evaluate privilege escalation techniques on Linux kernel-based operating systems using the Information System Security Assessment Framework (ISSAF) methodology and MITRE ATT&CK tactics. The research was conducted in the vulnerable VulnHub Lin.Security lab. Phases included planning (VirtualBox configuration), assessment (system enumeration and testing of 7 MITRE ATT&CK tactics: Abuse Elevation Control Mechanism, Account Manipulation, Create or Modify System Process, Escape to Host, Event Triggered Execution, Exploitation for Privilege Escalation, Hijack Execution Flow), and reporting. Results showed all seven tactics were successfully exploited in the lab environment, revealing vulnerabilities such as SetUID/SetGID misconfiguration, sudo issues, SSH key manipulation, systemd misuse, docker SUID exploitation, shell configuration file vulnerabilities, kernel exploits (PwnKit), and LD_PRELOAD hijacking. The main conclusion is that privilege escalation vulnerabilities in Linux systems can be exploited using MITRE ATT&CK tactics, emphasizing the importance of regular security audits and updates for risk mitigation.
Co-Authors Funny Farady Coastera, Funny Farady Putri, Tiara Eka