This is a comprehensive privesc playbook that goes deeper than most general enumeration scripts. It covers the usual suspects (SUID binaries, sudo misconfigs, cron abuse) but also gets into stuff base models often miss like capabilities exploitation, NFS no_root_squash, and wildcard injection in tar cron jobs. The routing to container escape and lateral movement skills is smart since privilege escalation is rarely the end goal. The GTFOBins quick-reference table and capability-to-exploit mapping save you from constantly searching docs mid-engagement. It references two additional files for SUID/capabilities tricks and kernel exploit mapping that aren't included here but would presumably give you exploit commands and version-specific payloads. Load this when you land a low-privilege shell and need a systematic path to root.
npx skills add https://github.com/yaklang/hack-skills --skill linux-privilege-escalation