mirror of
https://github.com/GTFOBins/GTFOBins.github.io.git
synced 2026-03-07 06:31:33 +01:00
30 lines
954 B
Plaintext
30 lines
954 B
Plaintext
---
|
|
functions:
|
|
file-write:
|
|
- code: |-
|
|
wireshark -c 1 -i lo -k -f 'udp port 12345' &
|
|
echo DATA | nc -u 127.127.127.127 12345
|
|
comment: |-
|
|
This technique can be used to write arbitrary files, i.e., the dump of one UDP packet.
|
|
|
|
After starting Wireshark, and waiting for the capture to begin, deliver the UDP packet, e.g., with `nc` (see below). The capture then stops and the packet dump can be saved:
|
|
|
|
1. select the only received packet;
|
|
|
|
2. right-click on "Data" from the "Packet Details" pane, and select "Export Packet Bytes...";
|
|
|
|
3. choose where to save the packet dump.
|
|
contexts:
|
|
sudo:
|
|
unprivileged:
|
|
inherit:
|
|
- code: |-
|
|
wireshark
|
|
comment: |-
|
|
This requires GUI interaction. Start Wireshark, then from the main menu, select "Tools" -> "Lua" -> "Evaluate". A window opens that allows to execute Lua code.
|
|
contexts:
|
|
sudo:
|
|
unprivileged:
|
|
from: lua
|
|
...
|