ZIP It Good: How Unzipping a File Gave Me Shell Access
作者在吃辣面时发现目标网站接受ZIP文件上传,利用Zip Slip漏洞入侵服务器。通过subfinder、httpx等工具侦察后,发现上传插件端点并成功利用ZIP文件上传漏洞实现入侵。 2025-7-1 11:56:42 Author: infosecwriteups.com(查看原文) 阅读量:15 收藏

Iski

Free Link 🎈

Hey there!😁

Image by Gemini AI

Life Lesson #86: If life gives you a ZIP file, don’t just extract it — exploit it.

I was halfway through a bowl of noodles that were just too spicy and life decisions that were just too questionable when I stumbled upon a target accepting ZIP file uploads. My brain whispered, “Bro, remember the good ol’ Zip Slip days?”

And oh boy, I zipped, slipped, and shell-ed my way into their server like I was born to unzip chaos.

Like always, I was neck-deep in recon with:

subfinder -d victim.com | httpx -mc 200 > live.txt
waybackurls victim.com | grep -i 'upload'

I came across an endpoint like:

https://app.victim.com/tools/uploadPlugin

Looked boring. Felt suspicious. Accepted ZIP files. Jackpot? Maybe.


文章来源: https://infosecwriteups.com/zip-it-good-how-unzipping-a-file-gave-me-shell-access-15c740bf5226?source=rss----7b722bfd1b8d--bug_bounty
如有侵权请联系:admin#unsafe.sh