mirror of
https://github.com/GTFOBins/GTFOBins.github.io
synced 2024-12-24 22:09:35 +01:00
edc8a2d03d
I came along with this method on stackoverflow while trying to execute commands using a SUID nmap binary, though `--script` failed me but this works. Could be enough to demonstrate effect of using SUID on Nmap. I've yet to come up with a way to over-write the contents of the system file according to what we want, with this we can only over-write files with nmap output. ```bash sudo touch /etc/filecantbetouched nmap 127.0.0.1 -oN=/etc/filecantbetouched cat /etc/filecantbetouched ``` |
||
---|---|---|
_data | ||
_gtfobins | ||
_includes | ||
_layouts | ||
assets | ||
scripts | ||
_config.yml | ||
.gitignore | ||
.travis.yml | ||
.yamllint | ||
contribute.md | ||
CONTRIBUTING.md | ||
functions.md | ||
Gemfile | ||
Gemfile.lock | ||
index.md | ||
LICENSE | ||
Makefile | ||
README.md |
GTFOBins
GTFOBins is a curated list of Unix binaries that can used to bypass local security restrictions in misconfigured systems.
Find the project at https://gtfobins.github.io