The Set User ID upon Execution (setuid) permission can allow a user to execute a program or script with the permissions of another user, typically with elevated privileges. The setuid bit appears as an s.
find / -user root -perm -4000 -exec ls -ldb {} \; 2>/dev/nullThe Set-Group-ID (setgid) permission is another special permission that allows us to run binaries as if we were part of the group that created them.
find / -user root -perm -6000 -exec ls -ldb {} \; 2>/dev/nullThis resource has more information about the setuid and setgid bits, including how to set the bits.
GTFOBins
The GTFOBins project is a curated list of binaries and scripts that can be used by an attacker to bypass security restrictions. Each page details the program’s features that can be used to break out of restricted shells, escalate privileges, spawn reverse shell connections, and transfer files
sudo apt-get update -o APT::Update::Pre-Invoke::=/bin/sh