GTFOBins.github.io/_data/functions.yml

execute-interactive:
  label: Interactive execute
  description: It executes interactive commands that may be used to break out from restricted shells.

execute-non-interactive:
  label: Non-interactive execute
  description: It executes non-interactive commands that may be used to break out from restricted shells.

suid-enabled:
  label: SUID
  description: It runs with the SUID bit set and may be exploited to access the file system, escalate or maintain access with elevated privileges working as a SUID backdoor. If it is used to run `/bin/sh -p`, omit the `-p` on systems like Debian that allow to run a SUID shell by default.

suid-limited:
  label: Limited SUID
  description: It runs with the SUID bit set and may be exploited to access the file system, escalate or maintain access with elevated privileges working as a SUID backdoor. Running `/bin/sh` only works on Debian systems that allow SUID shell execution by default.

sudo-enabled:
  label: Sudo
  description: It runs in privileged context and may be used to access the file system, escalate or maintain access with elevated privileges if enabled on `sudo`.

download:
  label: Download
  description: It can download remote files.

upload:
  label: Upload
  description: It can exfiltrate files on the network.

bind-shell-interactive:
  label: Interactive bind shell
  description: It can bind a shell to a local port to allow remote network access.

reverse-shell-interactive:
  label: Interactive reverse shell
  description: It can send back a reverse shell to a listening attacker to open a remote network access.

bind-shell-non-interactive:
  label: Non-interactive bind shell
  description: It can bind a non-interactive shell to a local port to allow remote network access.

reverse-shell-non-interactive:
  label: Non-interactive reverse shell
  description: It can send back a non-interactive reverse shell to a listening attacker to open a remote network access.

load-library:
  label: Library load
  description: It loads shared libraries that may be used to run code in the binary execution context.

file-read:
  label: File read
  description: It reads files and may be used to do privileged reads or disclose files outside a restricted file system.

file-write:
  label: File write
  description: It writes files and may be used to do privileged writes or write files outside a restricted file system.
Reorganize function names 2018-05-25 15:30:02 +02:00			`execute-interactive:`
			`label: Interactive execute`
Shorten functions description 2018-05-25 18:46:40 +02:00			`description: It executes interactive commands that may be used to break out from restricted shells.`
First commit 2018-05-21 21:14:41 +02:00
Reorganize function names 2018-05-25 15:30:02 +02:00			`execute-non-interactive:`
			`label: Non-interactive execute`
Shorten functions description 2018-05-25 18:46:40 +02:00			`description: It executes non-interactive commands that may be used to break out from restricted shells.`
First commit 2018-05-21 21:14:41 +02:00
			`suid-enabled:`
			`label: SUID`
Rephrase sudo, suid-enabled and suid-limited 2018-05-31 00:41:57 +02:00			description: It runs with the SUID bit set and may be exploited to access the file system, escalate or maintain access with elevated privileges working as a SUID backdoor. If it is used to run `/bin/sh -p`, omit the `-p` on systems like Debian that allow to run a SUID shell by default.
First commit 2018-05-21 21:14:41 +02:00
			`suid-limited:`
			`label: Limited SUID`
Rephrase suid-limited Debian limitation 2018-05-31 18:54:12 +02:00			description: It runs with the SUID bit set and may be exploited to access the file system, escalate or maintain access with elevated privileges working as a SUID backdoor. Running `/bin/sh` only works on Debian systems that allow SUID shell execution by default.
First commit 2018-05-21 21:14:41 +02:00
			`sudo-enabled:`
			`label: Sudo`
Rephrase sudo, suid-enabled and suid-limited 2018-05-31 00:41:57 +02:00			description: It runs in privileged context and may be used to access the file system, escalate or maintain access with elevated privileges if enabled on `sudo`.
First commit 2018-05-21 21:14:41 +02:00
			`download:`
			`label: Download`
			`description: It can download remote files.`

			`upload:`
			`label: Upload`
			`description: It can exfiltrate files on the network.`

Reorganize function names 2018-05-25 15:30:02 +02:00			`bind-shell-interactive:`
			`label: Interactive bind shell`
First commit 2018-05-21 21:14:41 +02:00			`description: It can bind a shell to a local port to allow remote network access.`

Reorganize function names 2018-05-25 15:30:02 +02:00			`reverse-shell-interactive:`
			`label: Interactive reverse shell`
First commit 2018-05-21 21:14:41 +02:00			`description: It can send back a reverse shell to a listening attacker to open a remote network access.`

Introduce non-interactive reverse and bind shells 2018-05-23 09:06:50 +02:00			`bind-shell-non-interactive:`
			`label: Non-interactive bind shell`
			`description: It can bind a non-interactive shell to a local port to allow remote network access.`

			`reverse-shell-non-interactive:`
			`label: Non-interactive reverse shell`
			`description: It can send back a non-interactive reverse shell to a listening attacker to open a remote network access.`
Reorganize function names 2018-05-25 15:30:02 +02:00
			`load-library:`
			`label: Library load`
			`description: It loads shared libraries that may be used to run code in the binary execution context.`
Add read and write functions 2018-05-28 19:08:53 +02:00
			`file-read:`
			`label: File read`
Rephrase sudo, suid-enabled and suid-limited 2018-05-31 00:41:57 +02:00			`description: It reads files and may be used to do privileged reads or disclose files outside a restricted file system.`
Fix trailing spaces 2018-05-28 19:55:44 +02:00
Add read and write functions 2018-05-28 19:08:53 +02:00			`file-write:`
			`label: File write`
Rephrase sudo, suid-enabled and suid-limited 2018-05-31 00:41:57 +02:00			`description: It writes files and may be used to do privileged writes or write files outside a restricted file system.`