Random Python scripts
I constructed this small script for the TryHackMe Room Source. Packet storm provided a base PoC script to build from including
- calling the payload via os.system with curl
- formatting the header with a referer
- establishing a revere shell by downloading a bash script from an HTTP server
Proof showing the reverse shell on source:
I wrote this small script as an alternative to a Metasploit Wordpress privilege escalation module (44595.rb), for the TryHackMe room Jack. The only issue was formatting the cookie properly for the second request. The initial request responds with three separate cookies, one for the test, one for plugins and one for the admin page. Inspecting the headers reveal that the admin page is the last cookie and I was able split accordingly.
Proof showing the 200 OK status code: