https://www.elastic.co/docs/reference/security/prebuilt-rules/rules/linux/privilege_escalation_suspicious_uid_guid_elevation
Privilege Escalation via CAP_SETUID/SETGID Capabilities | Prebuilt detection rules reference
Identifies instances where a process (granted CAP_SETUID and/or CAP_SETGID capabilities) is executed, after which the user's access is elevated to UID/GID...
privilege escalationvia capdetection rulessetuid
https://www.viacapitalizacao.com.br/
Home | Via Cap
viacap