You need initial access. This is just a list of tools you can use if you can't spawn a standard interactive shell, for whatever reason.
replyIt doesn't make it easier to "hack" servers, it's just a list of things that you could use once you're already inside.
I think docker was used for these things before. I remember some big service had secrets in env vars and a shell access inside the docker image from a npm post install script let them evacuate these secrets
replyIt's only relevant as a privilege escalation vector when you're able to execute those programs as root, but don't otherwise have root access on the server.
replyIt's a pretty niche circumstance. Unless an admin allows users on a server to execute some of these random types of binaries as root, it's not going to be a concern. And, if it wasn't already obvious, distros are almost never configured this way OOTB
I've seen plenty of servers in companies configured to allow sudoers to run a restricted subset of binaries as root, usually without a password. Some of them were GTFObins that the admins were not aware of until I reached out to let them know. I've also seen a couple of restricted shell setups where users could only run a handful of commands. Can't recall if I checked to see if any of them were GTFObins.
replyI wouldn't say this is the most useful h4x0r tool ever, but I wouldn't say it's particularly niche, either. This kinda stuff is definitely relevant in older large enterprise-type Linux/Unix environments.
Because you have to have shell access to the server to use any of these.
replyIn certain circumstances, they might be :-)
replyBut you can't "hack a server" using just these techniques: they would be a (small) part of a chain of exploits.