Linux Persistence

Linux Server SSH service is typically enabled and an attacker can take advantage of it.

If password login is disabled and key-based authentication is enabled, the attacker can copy a user's SSH private key and use it for future access.

Linux Cron is a service that repeatedly runs Cron jobs that can be used for command execution at a fixed interval and ensure persistent access to the target system.

PreviousEnabling RDP & New user NextAdding backdoor user

Last updated 1 year ago