Prints out info about capabilities
You need libcap-dev
$ sudo apt-get install libcap-dev
Then compile using gcc
$ gcc capShow.c -o capshow -lcap
Show every capability of all threads
$ ./capshow
Show capabilities of particular process
$ ./capshow -p pid
Show readable version of capabilities
$ ./capshow -r
An application locks itself, and all of its descendants, into an environment where the only way of gaining capabilities is by executing a program with associated file capabilities
You need libcap-ng-dev
$ sudo apt-get install libcap-ng-dev
Then compile using gcc
$ gcc capEnviron.c -o capenv -lcap-ng
Run program with some capabilities
$ sudo ./capenv (capabilities_to_add ...) -p program_path program_args
Run programm without any capabilities
$ sudo ./capenv -p program_path program_args
Services were used for testing ways of manipulating capabilities of a program