John Hammond
|
b1dcb47c80
|
Added GTFObin files up to the letter r
|
2020-05-24 23:54:55 -04:00 |
|
John Hammond
|
5a4823c8d3
|
Corrected the issue where base64 stream GTFOBin file writes would not work with files larger than 4096 bytes.
We patched base64io to include newlines.
|
2020-05-24 03:49:45 -04:00 |
|
John Hammond
|
a4e8767563
|
Added time as a GTFOBins
|
2020-05-24 01:12:51 -04:00 |
|
John Hammond
|
d8f2cbc85c
|
Added more GTFOBins
|
2020-05-24 00:59:46 -04:00 |
|
John Hammond
|
3edac48c55
|
Added valgrind as a GTFOBin
|
2020-05-23 23:33:33 -04:00 |
|
Caleb Stewart
|
511018f22e
|
Added nofork and pty options to socat shell
|
2020-05-23 16:08:54 -04:00 |
|
John Hammond
|
2eb9487e64
|
Got vim seemingly working as a GTFObin...
|
2020-05-23 04:34:37 -04:00 |
|
John Hammond
|
72b83c88b2
|
Added new GTFObins
|
2020-05-23 03:06:19 -04:00 |
|
John Hammond
|
76f83ea076
|
Added git and grep as GTFOBins
|
2020-05-20 23:55:15 -04:00 |
|
John Hammond
|
7d483d16e7
|
Fixed broken JSON file and typo-corrected some docs
|
2020-05-20 23:24:04 -04:00 |
|
John Hammond
|
fa36727a0b
|
Added gimp as a GTFOBins
|
2020-05-20 23:18:14 -04:00 |
|
John Hammond
|
c9cba4bf78
|
Added genisoimage as a GTFObin read
|
2020-05-20 22:42:13 -04:00 |
|
John Hammond
|
c930925d27
|
Added more GTFObins
|
2020-05-17 19:35:49 -04:00 |
|
John Hammond
|
14c67f9b4b
|
Added more GTFOBins
|
2020-05-17 17:01:08 -04:00 |
|
Caleb Stewart
|
512dd045c1
|
Refactored code to allow access to privesc.victim from anywhere (singleton)
|
2020-05-16 21:11:48 -04:00 |
|
Caleb Stewart
|
6b17fc2310
|
Fixed awk file-write payloads
|
2020-05-15 19:39:26 -04:00 |
|
John Hammond
|
0ce067ada9
|
Added GTFObins cut, date, diff, dmesg, dpkg
|
2020-05-14 23:19:40 -04:00 |
|
John Hammond
|
bc774eb7e0
|
Added new GTFOBins for curl and csh
|
2020-05-14 22:20:38 -04:00 |
|
John Hammond
|
e19bae85aa
|
Added new GTFOBinsx
|
2020-05-13 21:39:03 -04:00 |
|
John Hammond
|
b9695a12bc
|
Added chmod as a GTFOBins. Corrected backdoor functionality when asking for password
|
2020-05-13 19:24:13 -04:00 |
|
John Hammond
|
84a5cb7deb
|
Changed privesc methods to use run() rather than process()... seems to work?? Added socat as a gtfobins
|
2020-05-13 18:58:31 -04:00 |
|
Caleb Stewart
|
b9f3a572a7
|
Tested authorized_keys clobbering with only a file-write primitive
|
2020-05-13 17:51:39 -04:00 |
|
Caleb Stewart
|
38d16794fe
|
Fixed botched merge
|
2020-05-13 16:30:55 -04:00 |
|
Caleb Stewart
|
42d845def4
|
Merge branch 'master' of github.com:calebstewart/pwncat
|
2020-05-13 15:27:57 -04:00 |
|
Caleb Stewart
|
ac948183a3
|
Added ssh privesc capability through file read and/or file write
|
2020-05-13 15:27:01 -04:00 |
|
John Hammond
|
96c708a169
|
Added requests module into requrements. Should fix #9
|
2020-05-13 10:43:45 -04:00 |
|
Caleb Stewart
|
fa1d07d797
|
Fixed privesc.read_file and privesc.write_file
|
2020-05-12 23:31:25 -04:00 |
|
Caleb Stewart
|
d656849fbd
|
Reworking privesc framework to better allow other methods (e.g. ssh key clobbering)
|
2020-05-12 20:45:52 -04:00 |
|
Caleb Stewart
|
e661d0225d
|
Fixed cat typo in gtfobins.json
|
2020-05-12 14:13:17 -04:00 |
|
Caleb Stewart
|
177f1bd9ba
|
Added GTFObins downloader and uploader and an asciinema cast
|
2020-05-12 13:53:28 -04:00 |
|
Caleb Stewart
|
09d78cac67
|
Vast gtfobins improvements. Added new method 'open' to PtyHandler which allows generically opening a remote file as a file-like object (read/write) via new gtfobins module
|
2020-05-12 03:12:34 -04:00 |
|
Caleb Stewart
|
425a3c99cd
|
Doesn't work yet
|
2020-05-11 15:27:49 -04:00 |
|
John Hammond
|
983f37e6d6
|
Added vim as a GTFOBin. Testing resolved a clusterfuck
|
2020-05-10 23:17:03 -04:00 |
|
John Hammond
|
2a4ab160d3
|
Merge branch 'master' of https://github.com/calebstewart/pwncat
|
2020-05-10 19:57:32 -04:00 |
|
John Hammond
|
27fe9288c4
|
Added some GTFOBins
|
2020-05-10 19:55:47 -04:00 |
|
Caleb Stewart
|
f173e22d16
|
Added ability for bidirectional binary IO w/ remote process
|
2020-05-10 19:55:20 -04:00 |
|
Caleb Stewart
|
96bdb89336
|
Added busybox staging. Still need to fix all the references to the new which method.
|
2020-05-10 16:12:20 -04:00 |
|
John Hammond
|
ac568f271f
|
Fixed errata from merge
|
2020-05-09 22:06:45 -04:00 |
|
John Hammond
|
a78c7926c0
|
Merge branch 'readwrite' of https://github.com/calebstewart/pwncat into readwrite
|
2020-05-09 21:41:41 -04:00 |
|
John Hammond
|
64fc44bdae
|
Added more gtfobins!
|
2020-05-09 21:40:37 -04:00 |
|
Caleb Stewart
|
b21761ff6f
|
Working /etc/passwd overwrite to root.
|
2020-05-09 21:38:24 -04:00 |
|
John Hammond
|
2d65544b77
|
Added new GTFObins entries
|
2020-05-09 19:00:15 -04:00 |
|
John Hammond
|
bebe20dcfb
|
Added "safe" property to gtfobins and started to add more GTFObins
|
2020-05-09 18:36:51 -04:00 |
|
John Hammond
|
3b7bf075d5
|
Added privesc read capability! Only somewhat tested...
|
2020-05-09 17:05:18 -04:00 |
|
Caleb Stewart
|
068c55f868
|
Added sudo awareness to gtfobins and updated privesc/sudo to understand the new interface. Sudo now supports wildcard listings and can intelligently parse whether a privesc is possible.
|
2020-05-09 15:02:04 -04:00 |
|
John Hammond
|
1b54ade0fb
|
Added lots of dirty sudo privesc code. It works!
|
2020-05-09 03:28:58 -04:00 |
|
Caleb Stewart
|
0ea0ef2546
|
Added abstract gtfobins interface
|
2020-05-09 00:49:38 -04:00 |
|