Enumerating Processes

As a regular user it may not be possible to snoop on processes that are initiated by root or other privileged users using system commands such as ps, however PSPY can be used to snoop on other user initiated processes, cron jobs, etc. This is very useful in identifying hidden processes and if any credentials were passed as arguements.

The tool can be run by simply executing it,

./PSPY64

If there are sockets found that can be connected to, then socat or netcat can be used to connect to the linux socket.

nc -Ul <socket details>
PreviousInsecure File PermissionsNextQuick Commands

Last updated