GTFOBins.github.io
GTFOBins.github.io copied to clipboard
GTFOBins
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
We found that there is an parameter to read file without sending HTTP GET Request on aria2c. w/ @bugrademirel If SUID bit is set, user can read root files directly.
- `pip config --editor` allows specifying an editor for pip config changes. - User can pass any filepath as editor, this allows spawning a shell or escalate to root if...
if 'find' was among the SUID's you get a privileged access to read files with it
Add sudo privilege escalation using passwd binary, sudo privileges on passwd allows the user to change the passwords of any users present on the system
--- description: | `getent` is a command-line utility used to fetch entries from administrative databases configured in the system’s Name Service Switch (NSS), such as `passwd`, `group`, `hosts`, and critically,...
Hey i was attempting to use the reverse shell from python against a test box and encountered some errors due to not parsing newlines. Would it be viable to modify...
When running this on a system without internet connectivity, it is unable to actually execute and install the package created above. It is neccesary to include --disablerepo=* as there are...
Example: ``` /usr/lib/aarch64-linux-gnu/gettext/urlget /etc/passwd /etc/passwd ```
