GTFOBins
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems.
The project collects legitimate functions of Unix binaries that can be abused to break out restricted shells, escalate or maintain elevated privileges, transfer files, spawn bind and reverse shells, and facilitate other post-exploitation tasks.
Functions
Contexts
Filter
Search among 458 executables: [<name>]/[<function>]/[<context>]
- 7z File read
- aa-exec Shell
- ab Download Upload
- acr Command
- agetty Shell
- alpine File read
- ansible-playbook Shell
- ansible-test Shell
- aoss Shell
- apache2 File read
- apache2ctl File read
- apport-cli Inherit
- apt-get Inherit Shell
- aptitude Inherit
- ar File read
- arch-nspawn Shell
- aria2c Command Download File read
- arj File read File write
- arp File read
- as File read
- ascii-xfr File read
- ascii85 File read
- ash File write Shell
- aspell File read
- asterisk Shell
- at Command Shell
- atobm File read
- autoconf Shell
- autoheader Shell
- autoreconf Shell
- aws File read Inherit
- base32 File read
- base58 File read
- base64 File read
- basenc File read
- basez File read
- bash Download File read File write Library load Reverse shell Shell Upload
- bashbug Inherit
- batcat Inherit
- bbot File read
- bc File read
- bconsole File read Shell
- bee Inherit
- borg Shell
- bpftrace Shell
- bridge File read
- bundle Inherit Shell
- busctl Inherit Shell
- busybox Inherit Reverse shell Upload
- byebug Inherit
- bzip2 File read
- cabal Shell
- cancel Upload
- capsh Shell
- cargo Inherit
- cat File read
- cdist Shell
- certbot Shell
- chattr Privilege escalation
- check_by_ssh Shell
- check_cups File read
- check_log File read File write
- check_memory File read
- check_raid File read
- check_ssl_cert Shell
- check_statusfile File read
- chmod Privilege escalation
- choom Shell
- chown Privilege escalation
- chroot Shell
- chrt Shell
- clamscan File read
- clisp Shell
- cmake File read Shell
- cmp File read
- cobc Shell
- code Download Reverse shell Upload
- codex Shell
- column File read
- comm File read
- composer Shell
- cowsay Inherit
- cowthink Inherit
- cp File read File write Privilege escalation
- cpan Inherit
- cpio File read File write Shell
- cpulimit Shell
- crash Command Inherit
- crontab Command Inherit
- csh File write Shell
- csplit File read File write
- csvtool File read File write Shell
- ctr Shell
- cupsfilter File read
- curl Download File read File write Library load Upload
- cut File read
- dash File write Shell
- date File read
- dc Shell
- dd File read File write
- debugfs Shell
- dhclient Shell
- dialog File read
- diff File read
- dig File read
- distcc Shell
- dmesg File read Inherit
- dmidecode File write
- dmsetup Shell
- dnf Command
- dnsmasq Command
- doas Shell
- docker File read File write Shell
- dos2unix File read File write
- dosbox File read File write
- dotnet File read Shell
- dpkg Inherit Shell
- dstat Inherit
- dvips Shell
- easy_install Inherit
- easyrsa Shell
- eb Inherit
- ed File read File write Shell
- efax File read
- egrep File read
- elvish File read File write Shell
- emacs File read File write Shell
- enscript Shell
- env Shell
- eqn File read
- espeak File read
- ex Inherit Shell
- exiftool File read File write Inherit
- expand File read
- expect File read Shell
- facter Inherit
- fail2ban-client Command
- fastfetch Command File read Shell
- ffmpeg Library load
- fgrep File read
- file File read
- find File read File write Shell
- finger Download Upload
- firejail Shell
- fish Shell
- flock Shell
- fmt File read
- fold File read
- forge Shell
- fping File read
- ftp Download Shell Upload
- fzf Command Shell
- gawk Bind shell File read File write Reverse shell Shell
- gcc File read File write Shell
- gcloud Inherit
- gcore File read
- gdb File write Inherit Shell
- gem Inherit Shell
- genie Shell
- genisoimage File read
- getent Privilege escalation
- ghc Shell
- ghci Shell
- gimp Inherit
- ginsh Shell
- git File read File write Inherit Shell
- gnuplot Shell
- go Bind shell File read File write Reverse shell Shell
- grc Shell
- grep File read
- gtester File write Shell
- guile Shell
- gzip File read
- hashcat File write
- head File read
- hexdump File read
- hg Shell
- highlight File read
- hping3 Shell Upload
- iconv File read File write
- iftop Shell
- install Privilege escalation
- ionice Shell
- ip File read Shell
- iptables-save File write
- irb Inherit
- ispell Shell
- java Shell
- jjs Download File read File write Reverse shell Shell
- joe Shell
- join File read
- journalctl Inherit
- jq File read
- jrunscript Download File read File write Reverse shell Shell
- jshell File read File write Shell
- jtag Shell
- julia Download File read File write Reverse shell Shell
- knife Inherit
- ksshell File read
- ksu Shell
- kubectl Shell Upload
- last File read
- latex File read File write Shell
- latexmk File read Inherit Shell
- ld.so Shell
- ldconfig Library load
- less Command File read File write Inherit Shell
- lftp Shell
- links File read
- ln Privilege escalation
- loginctl Shell
- logrotate File read File write Shell
- logsave Shell
- look File read
- lp Upload
- ltrace File read File write Shell
- lua Bind shell Download File read File write Reverse shell Shell Upload
- lualatex Inherit
- luatex Inherit
- lwp-download Download File read File write
- lwp-request File read
- lxd Shell
- m4 Command File read Shell
- mail Shell
- make File read File write Shell
- man File read Inherit Shell
- mawk File read File write Shell
- minicom Shell
- more File read Shell
- mosh-server Shell
- mosquitto File read
- mount Privilege escalation
- msfconsole Inherit
- msgattrib File read
- msgcat File read
- msgconv File read
- msgfilter File read Shell
- msgmerge File read
- msguniq File read
- mtr File read
- multitime Shell
- mutt File read
- mv File write Privilege escalation
- mypy File read File write
- mysql Library load Shell
- nano File read File write Shell
- nasm File read
- nc Bind shell Download Reverse shell Upload
- ncdu Shell
- ncftp Shell
- needrestart Inherit
- neofetch File read Shell
- nft File read
- nginx Download Library load Upload
- nice Shell
- nl File read
- nm File read
- nmap File read File write Inherit Shell
- node Bind shell Download File read File write Reverse shell Shell Upload
- nohup Command Shell
- npm Shell
- nroff File read Shell
- nsenter Shell
- ntpdate File read
- octave File read File write Shell
- od File read
- opencode Command Inherit
- openssl Download File read File write Library load Reverse shell Upload
- openvpn File read Shell
- openvt Command
- opkg Shell
- pandoc File read File write Inherit
- passwd Privilege escalation
- paste File read
- pax File read
- pdb Inherit
- pdflatex File read File write Shell
- pdftex Shell
- perf Shell
- perl Download File read Reverse shell Shell Upload
- perlbug Shell
- pexec Shell
- pg File read Shell
- php Command Download File read File write Reverse shell Shell Upload
- pic File read Shell
- pidstat Shell
- pip Inherit Shell
- pipx Inherit
- pkexec Shell
- pkg Command
- plymouth Shell
- podman Shell
- poetry Inherit
- posh Shell
- pr File read
- procmail Command
- pry Inherit
- psftp Shell
- psql Inherit Shell
- ptx File read
- puppet File read File write Shell
- pwsh File write Shell
- pygmentize File read
- pyright File read
- python Download File read File write Library load Reverse shell Shell Upload
- qpdf File read
- R Shell
- rake File read Inherit
- ranger Shell
- rc Shell
- readelf File read
- redcarpet File read
- redis File write
- restic Command Shell Upload
- rev File read
- rlogin Upload
- rlwrap File write Shell
- rpm Command Inherit Shell
- rpmdb Inherit Shell
- rpmquery Inherit Shell
- rpmverify Inherit Shell
- rsync Shell
- rsyslogd Command
- rtorrent Shell
- ruby Download File read File write Library load Reverse shell Shell Upload
- run-mailcap Inherit
- run-parts Shell
- runscript Shell
- rustc File read File write Inherit
- rustdoc File read File write
- rustfmt File read
- rustup Command Shell
- sash Shell
- scanmem Shell
- scp Download Shell Upload
- screen File write Shell
- script File write Shell
- scrot Shell
- sed File read File write Shell
- service Shell
- setarch Shell
- setcap Privilege escalation
- setfacl Privilege escalation
- setlock Shell
- sftp Download Shell Upload
- sg Shell
- shred File write
- shuf File read File write
- slsh Shell
- smbclient Download Shell Upload
- snap Command
- socat Bind shell Download File read File write Reverse shell Shell Upload
- socket Bind shell Reverse shell
- soelim File read
- softlimit Shell
- sort File read File write
- split File read File write Shell
- sqlite3 File read File write Shell
- sqlmap Inherit
- ss File read
- ssh Download File read Shell Upload
- ssh-agent Shell
- ssh-copy-id File read File write
- ssh-keygen Library load
- ssh-keyscan File read
- sshfs Command Download Shell Upload
- sshpass Shell
- sshuttle Shell
- start-stop-daemon Shell
- stdbuf Shell
- strace File write Shell
- strings File read
- su Shell
- sudo Shell
- sysctl Command File read
- systemctl Inherit Shell
- systemd-resolve Inherit
- systemd-run Command Shell
- tac File read
- tail File read
- tailscale Upload
- tar Download File read File write Shell Upload
- task Shell
- taskset Shell
- tasksh Shell
- tbl File read
- tclsh Library load Reverse shell Shell
- tcpdump Command File write
- tcsh File write Shell
- tdbtool Shell
- tee File write
- telnet Reverse shell Shell
- terraform File read
- tex Shell
- tftp Download Upload
- tic File read
- time Shell
- timedatectl Inherit
- timeout Shell
- tmate Shell
- tmux File read Shell
- top Shell
- torify Shell
- torsocks Shell
- troff File read
- tsc File read File write
- tshark Inherit
- ul File read
- unexpand File read
- uniq File read
- unshare Shell
- unsquashfs Privilege escalation
- unzip Privilege escalation
- update-alternatives File write
- urlget File read
- uuencode File read
- uv Shell
- vagrant Inherit
- valgrind Shell
- varnishncsa File write
- vi File read File write Shell
- vigr Inherit
- vim File read Inherit
- vipw Inherit
- virsh Command File write
- volatility Inherit
- w3m File read
- wall File read
- watch Shell
- wc File read
- wg-quick Shell
- wget Download File read File write Shell Upload
- whiptail File read
- whois Download Upload
- wireshark File write Inherit
- wish Inherit
- xargs File read Shell
- xdg-user-dir Shell
- xdotool Shell
- xmodmap File read
- xmore File read
- xpad File read
- xxd File read File write
- xz File read
- yarn Shell
- yash Shell
- yelp File read
- yt-dlp Shell
- yum Command Download Inherit
- zathura Shell
- zcat File read
- zgrep File read
- zic Command
- zip File read Shell
- zless Inherit
- zsh Download File read File write Inherit Reverse shell Shell Upload
- zsoelim File read
- zypper Shell