public-mirrors/GTFOBins.github.io
1
0
Fork 0
mirror of https://github.com/GTFOBins/GTFOBins.github.io synced 2024-10-22 16:48:09 +02:00
Code Issues Projects Releases Wiki Activity

Add wireshark sudo file write

Browse Source 
Co-authored-by: Andrea Cardaci <cyrus.and@gmail.com>
This commit is contained in:
Gauthier Sebaux 2022-01-27 14:53:26 +01:00 committed by GitHub
parent 50ab4f0ce0
commit 74e021e8ef
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 18 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
_gtfobins/wireshark.md Normal file
View File

@ -0,0 +1,18 @@
---
functions:
sudo:
- description: |
This technique can be used to write arbitrary files, i.e., the dump of one UDP packet.
After starting Wireshark, and waiting for the capture to begin, deliver the UDP packet, e.g., with `nc` (see below). The capture then stops and the packet dump can be saved:
1. select the only received packet;
2. right-click on "Data" from the "Packet Details" pane, and select "Export Packet Bytes...";
3. choose where to save the packet dump.
code: |
PORT=4444
sudo wireshark -c 1 -i lo -k -f "udp port $PORT" &
echo 'DATA' | nc -u 127.127.127.127 "$PORT"
---