diff --git a/_gtfobins/busybox.md b/_gtfobins/busybox.md new file mode 100644 index 0000000..4d0116c --- /dev/null +++ b/_gtfobins/busybox.md @@ -0,0 +1,24 @@ +--- +description: BusyBox may contain many UNIX utilities, run `busybox --list-full` to check what GTFBins binaries are supported. Here some example. +functions: + execute-interactive: + - code: busybox sh + sudo-enabled: + - code: sudo busybox sh + suid-enabled: + - description: It may drop the SUID privileges depending on the compilation flags and the runtime configuration. + code: ./busybox sh + file-read: + - code: | + LFILE=file_to_read + ./busybox cat "$LFILE" + file-write: + - code: | + LFILE=file_to_write + busybox sh -c 'echo "data" > $LFILE' + upload: + - description: Serve files in the local folder running an HTTP server. + code: | + export LPORT=12345 + busybox httpd -f -p $LPORT -h . +---