Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-15 01:17:36 +00:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #225 from yehgdotnet/master

Browse source 
Added https://en.wikipedia.org/wiki/List_of_file_signatures to pentesting-web/file-upload/README.md
This commit is contained in:
Carlos Polop 2021-09-11 10:05:22 +01:00 committed by GitHub
commit b844aca88a
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 3 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
linux-unix/privilege-escalation/README.md
View file

@ -1463,7 +1463,7 @@ Files that ships in packages downloaded from distribution repository go into `/u
**Mestaploit:** _**multi/recon/local\_exploit\_suggester**_
**Linux Exploit Suggester:** [https://github.com/mzet-/linux-exploit-suggester](https://github.com/mzet-/linux-exploit-suggester)
**EvilAbigail \(physical access\):** [https://github.com/GDSSecurity/EvilAbigail](https://github.com/GDSSecurity/EvilAbigail)
**Recopilation of more scripts**: [https://gh-dark.rauchg.now.sh/1N3/PrivEsc/tree/master/linux](https://gh-dark.rauchg.now.sh/1N3/PrivEsc/tree/master/linux)
**Recopilation of more scripts**: [https://github.com/1N3/PrivEsc](https://github.com/1N3/PrivEsc)
### Bibliography

2
pentesting-web/file-upload/README.md
View file

@ -165,6 +165,8 @@ Heres a top 10 list of things that you can achieve by uploading \(from [link]
* **PNG**: `"\x89PNG\r\n\x1a\n\0\0\0\rIHDR\0\0\x03H\0\xs0\x03["`
* **JPG**: `"\xff\xd8\xff"`
Refer to [https://en.wikipedia.org/wiki/List_of_file_signatures](https://en.wikipedia.org/wiki/List_of_file_signatures) for other filetypes.
## Zip File Automatically decompressed Upload
If you can upload a ZIP that is going to be decompressed inside the server, you can do 2 things: