GTFOBins.github.io/_gtfobins/gcore.md
Wirzka 1468b6c2bd
Add gcore
Co-authored-by: Andrea Cardaci <cyrus.and@gmail.com>
2021-08-28 12:47:54 +02:00

444 B

description functions
It can be used to generate core dumps of running processes. Such files often contains sensitive information such as open files content, cryptographic keys, passwords, etc. This command produces a binary file named `core.$PID`, that is then often filtered with `strings` to narrow down relevant information.
file-read sudo suid
code
gcore $PID
code
sudo gcore $PID
code
./gcore $PID