Open this lesson in your favourite AI. It'll walk you through the why, explain the demo, and quiz you on the try-it list.
System security is about adversaries who already got onto the host — local privilege escalation, lateral movement, persistence. The defender's mindset assumes the perimeter is breached and asks 'what makes the next step harder?'. Defense-in-depth: every layer (kernel, filesystem, network, process) gets its own controls so that compromising one doesn't grant the others.
An attacker who lands a webshell on your box already has the unprivileged user. The question is whether they can escalate to root, persist across reboots, and move to neighbouring hosts — each a separate defence.
linpeas.sh on a staging host. It reports privilege-escalation vectors. Count how many findings have remediations you've shipped.Use these three in order. Each builds on the one before.
In one paragraph, contrast the system-security mindset with web-security mindset.
Walk me through a typical post-exploitation chain on Linux from initial shell to persistence.
Defence in depth is sometimes criticised as 'expensive controls that overlap'. When is it actually necessary?