Services Enumeration Commands

My most common enum commands when or priv escalating or lateral movement on a Linux box

plications & Services

What services are running? Which service has which user privilege?

Commands
ps aux
ps -ef
top
cat /etc/services

Which service(s) are been running by root? Of these services, which are vulnerable - it's worth a double check!

Commands
ps aux | grep root
ps -ef | grep root

What applications are installed? What version are they? Are they currently running?

Commands
ls -alh /usr/bin/
ls -alh /sbin/
dpkg -l
ls -alh /var/cache/apt/archivesO
ls -alh /var/cache/yum/

Any of the service(s) settings misconfigured? Are any (vulnerable) plugins attached?

Commands
cat /etc/syslog.conf
cat /etc/chttp.conf
cat /etc/lighttpd.conf
cat /etc/cups/cupsd.conf
cat /etc/inetd.conf
cat /etc/apache2/apache2.conf
cat /etc/my.conf
cat /etc/httpd/conf/httpd.conf
cat /opt/lampp/etc/httpd.conf ls -aRl /etc/ | awk '$1 ~ /^.r./