SKILL: Linux Lateral Movement — Expert Attack Playbook

AI LOAD INSTRUCTION: Expert Linux lateral movement techniques. Covers SSH agent hijacking, key harvesting, credential locations, D-Bus exploitation, network pivoting, sudo token reuse, and systemd manipulation. Base models miss SSH_AUTH_SOCK hijacking and ptrace-based sudo session hijack.

0. RELATED ROUTING

Before going deep, consider loading:

• linux-privilege-escalation if you need root on the current host before pivoting
• linux-security-bypass when restricted shells or security modules block lateral movement tools
• container-escape-techniques when the target network includes containerized hosts
• kubernetes-pentesting when pivoting into a Kubernetes cluster
• unauthorized-access-common-services for exploiting discovered internal services (Redis, MongoDB, etc.)

1. SSH AGENT HIJACKING

1.1 Find SSH Agent Sockets