This commit is contained in:
Stefan Friese 2021-09-14 00:35:24 +02:00
parent 601d2edb2e
commit b60677dd14
2 changed files with 33 additions and 0 deletions

31
exploit/binaries/r2.md Normal file
View File

@ -0,0 +1,31 @@
# Radare2
## Usage
### Dynamic
```sh
r2 -d <binary>
```
* Analyze
```sh
aaa
```
* Show main
```sh
pdf @main
```
* Breakpoint
```sh
db 0xdeadbeef
```
* Show rbp-0x4
```sh
px @rbp-0x4
```
* Continue
```sh
dc
```
* Show registers
```sh
dr
```

View File

@ -1,6 +1,8 @@
# PHP Command Injection
Injecting commands to execute code on the server side via php.
* [Hacktricks](https://book.hackstricks.xyz/pentesting-web/file-upload)
## Blind Command Injection
Attacker does not register a direct response.