GTFOBins

查看原文 / View Original 编辑 / Edit

GTFOBins

GTFOBins is a curated list of Unix-like executables that can be used to bypass local security restrictions in misconfigured systems. GTFOBins 是一个精选的类 Unix 可执行文件列表,可用于绕过配置错误的系统中的本地安全限制。

The project collects legitimate functions of Unix-like executables that can be abused to get the f**k break out restricted shells, escalate or maintain elevated privileges, transfer files, spawn bind and reverse shells, and facilitate other post-exploitation tasks. 该项目收集了类 Unix 可执行文件的合法功能,这些功能可能被滥用以逃离受限 Shell、提升或维持高权限、传输文件、生成绑定(Bind)和反向(Reverse)Shell,以及辅助其他后渗透任务。

GTFOBins is a joint effort by Emilio Pinna and Andrea Cardaci, and many other contributors. Everyone can get involved by providing additional entries and techniques! GTFOBins 是由 Emilio Pinna、Andrea Cardaci 以及许多其他贡献者共同努力的成果。欢迎每个人通过提供额外的条目和技术来参与其中!

If you are looking for Windows binaries you should visit LOLBAS. Please note that this is not a list of exploits, and the programs listed here are not vulnerable per se, rather, GTFOBins is a compendium about how to live off the land when you only have certain executables available. 如果您正在寻找 Windows 二进制文件,请访问 LOLBAS。请注意,这不是一个漏洞列表,此处列出的程序本身并不存在漏洞;相反,GTFOBins 是一部关于在仅拥有特定可执行文件时如何“就地取材”(Live off the land)的纲要。

Functions (功能)

  • Shell: Shell
  • Command: 命令执行
  • Reverse shell: 反向 Shell
  • Bind shell: 绑定 Shell
  • File: 文件操作 (write/read)
  • Upload: 上传
  • Download: 下载
  • Library load: 库加载
  • Privilege escalation: 权限提升
  • Inherit: 继承上下文 (Unprivileged/Sudo/SUID/Capabilities)

(Note: The original text contains a comprehensive list of Unix binaries such as 7z, awk, bash, curl, find, gdb, etc., categorized by their potential abuse functions. Due to the extensive nature of the list, please refer to the official GTFOBins website for the full interactive database.)

(注:原文包含一份详尽的 Unix 二进制文件列表,如 7zawkbashcurlfindgdb 等,并按其潜在的滥用功能进行了分类。由于列表内容极其庞大,请访问 GTFOBins 官方网站 以获取完整的交互式数据库。)

← 返回新闻列表 / Back to news list