1
0
mirror of https://github.com/calebstewart/pwncat.git synced 2024-11-30 20:34:15 +01:00
Commit Graph

47 Commits

Author SHA1 Message Date
John Hammond
b1dcb47c80 Added GTFObin files up to the letter r 2020-05-24 23:54:55 -04:00
John Hammond
5a4823c8d3 Corrected the issue where base64 stream GTFOBin file writes would not work with files larger than 4096 bytes.
We patched base64io to include newlines.
2020-05-24 03:49:45 -04:00
John Hammond
a4e8767563 Added time as a GTFOBins 2020-05-24 01:12:51 -04:00
John Hammond
d8f2cbc85c Added more GTFOBins 2020-05-24 00:59:46 -04:00
John Hammond
3edac48c55 Added valgrind as a GTFOBin 2020-05-23 23:33:33 -04:00
Caleb Stewart
511018f22e Added nofork and pty options to socat shell 2020-05-23 16:08:54 -04:00
John Hammond
2eb9487e64 Got vim seemingly working as a GTFObin... 2020-05-23 04:34:37 -04:00
John Hammond
72b83c88b2 Added new GTFObins 2020-05-23 03:06:19 -04:00
John Hammond
76f83ea076 Added git and grep as GTFOBins 2020-05-20 23:55:15 -04:00
John Hammond
7d483d16e7 Fixed broken JSON file and typo-corrected some docs 2020-05-20 23:24:04 -04:00
John Hammond
fa36727a0b Added gimp as a GTFOBins 2020-05-20 23:18:14 -04:00
John Hammond
c9cba4bf78 Added genisoimage as a GTFObin read 2020-05-20 22:42:13 -04:00
John Hammond
c930925d27 Added more GTFObins 2020-05-17 19:35:49 -04:00
John Hammond
14c67f9b4b Added more GTFOBins 2020-05-17 17:01:08 -04:00
Caleb Stewart
512dd045c1 Refactored code to allow access to privesc.victim from anywhere (singleton) 2020-05-16 21:11:48 -04:00
Caleb Stewart
6b17fc2310 Fixed awk file-write payloads 2020-05-15 19:39:26 -04:00
John Hammond
0ce067ada9 Added GTFObins cut, date, diff, dmesg, dpkg 2020-05-14 23:19:40 -04:00
John Hammond
bc774eb7e0 Added new GTFOBins for curl and csh 2020-05-14 22:20:38 -04:00
John Hammond
e19bae85aa Added new GTFOBinsx 2020-05-13 21:39:03 -04:00
John Hammond
b9695a12bc Added chmod as a GTFOBins. Corrected backdoor functionality when asking for password 2020-05-13 19:24:13 -04:00
John Hammond
84a5cb7deb Changed privesc methods to use run() rather than process()... seems to work?? Added socat as a gtfobins 2020-05-13 18:58:31 -04:00
Caleb Stewart
b9f3a572a7 Tested authorized_keys clobbering with only a file-write primitive 2020-05-13 17:51:39 -04:00
Caleb Stewart
38d16794fe Fixed botched merge 2020-05-13 16:30:55 -04:00
Caleb Stewart
42d845def4 Merge branch 'master' of github.com:calebstewart/pwncat 2020-05-13 15:27:57 -04:00
Caleb Stewart
ac948183a3 Added ssh privesc capability through file read and/or file write 2020-05-13 15:27:01 -04:00
John Hammond
96c708a169 Added requests module into requrements. Should fix #9 2020-05-13 10:43:45 -04:00
Caleb Stewart
fa1d07d797 Fixed privesc.read_file and privesc.write_file 2020-05-12 23:31:25 -04:00
Caleb Stewart
d656849fbd Reworking privesc framework to better allow other methods (e.g. ssh key clobbering) 2020-05-12 20:45:52 -04:00
Caleb Stewart
e661d0225d Fixed cat typo in gtfobins.json 2020-05-12 14:13:17 -04:00
Caleb Stewart
177f1bd9ba Added GTFObins downloader and uploader and an asciinema cast 2020-05-12 13:53:28 -04:00
Caleb Stewart
09d78cac67 Vast gtfobins improvements. Added new method 'open' to PtyHandler which allows generically opening a remote file as a file-like object (read/write) via new gtfobins module 2020-05-12 03:12:34 -04:00
Caleb Stewart
425a3c99cd Doesn't work yet 2020-05-11 15:27:49 -04:00
John Hammond
983f37e6d6 Added vim as a GTFOBin. Testing resolved a clusterfuck 2020-05-10 23:17:03 -04:00
John Hammond
2a4ab160d3 Merge branch 'master' of https://github.com/calebstewart/pwncat 2020-05-10 19:57:32 -04:00
John Hammond
27fe9288c4 Added some GTFOBins 2020-05-10 19:55:47 -04:00
Caleb Stewart
f173e22d16 Added ability for bidirectional binary IO w/ remote process 2020-05-10 19:55:20 -04:00
Caleb Stewart
96bdb89336 Added busybox staging. Still need to fix all the references to the new which method. 2020-05-10 16:12:20 -04:00
John Hammond
ac568f271f Fixed errata from merge 2020-05-09 22:06:45 -04:00
John Hammond
a78c7926c0 Merge branch 'readwrite' of https://github.com/calebstewart/pwncat into readwrite 2020-05-09 21:41:41 -04:00
John Hammond
64fc44bdae Added more gtfobins! 2020-05-09 21:40:37 -04:00
Caleb Stewart
b21761ff6f Working /etc/passwd overwrite to root. 2020-05-09 21:38:24 -04:00
John Hammond
2d65544b77 Added new GTFObins entries 2020-05-09 19:00:15 -04:00
John Hammond
bebe20dcfb Added "safe" property to gtfobins and started to add more GTFObins 2020-05-09 18:36:51 -04:00
John Hammond
3b7bf075d5 Added privesc read capability! Only somewhat tested... 2020-05-09 17:05:18 -04:00
Caleb Stewart
068c55f868 Added sudo awareness to gtfobins and updated privesc/sudo to understand the new interface. Sudo now supports wildcard listings and can intelligently parse whether a privesc is possible. 2020-05-09 15:02:04 -04:00
John Hammond
1b54ade0fb Added lots of dirty sudo privesc code. It works! 2020-05-09 03:28:58 -04:00
Caleb Stewart
0ea0ef2546 Added abstract gtfobins interface 2020-05-09 00:49:38 -04:00