t0thkr1s/gtfo t0thkr1s/gtfo

  • Stars
    star
    125
  • Rank 284,779 (Top 6 %)
  • Language
    Python
  • License
    GNU General Publi...
  • Created over 4 years ago
  • Updated over 3 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
t0thkr1s/gtfo
github

t0thkr1s

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Search for Unix binaries that can be exploited to bypass system security restrictions.

gtfo

made-with-python built-with-love

This is a standalone script written in Python 3 for GTFOBins. You can search for Unix binaries that can be exploited to bypass system security restrictions. These binaries can be abused to get the f**k break out of restricted shells, escalate privileges, transfer files, spawn bind and reverse shells, etc...

The functions are from https://github.com/GTFOBins/GTFOBins.github.io and all credit goes to its respective contributors. They are simplified (no need for environmental variables) and syntax highlighted.

Download

git clone https://github.com/t0thkr1s/gtfo

Install

The script has 2 dependencies:

You can install these by typing:

python3 setup.py install

Run

python3 gtfo.py [binary]

Screenshots

Screenshot 1 Screenshot 2
Screenshot1 Screenshot2

Disclaimer

This tool is only for testing and academic purposes and can only be used where strict consent has been given. Do not use it for illegal purposes! It is the end user’s responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this tool and software.

License

This project is licensed under the GPLv3 License - see the LICENSE file for details

More Repositories

1

revshellgen

Reverse shell generator written in Python 3.
Python
498
star
2

allsafe

Intentionally vulnerable Android application.
Java
201
star
3

frida

Frida scripts for mobile application dynamic-analysis.
Python
98
star
4

gpp-decrypt

Tool to parse the Group Policy Preferences XML file which extracts the username and decrypts the cpassword attribute.
Python
73
star
5

dotfiles

My essential dotfiles.
Python
38
star
6

subzero

Passive subdomain enumeration tool for bug-bounty hunters & penetration testers.
Python
14
star
7

offsec

Docker environment for exploit development.
Dockerfile
9
star
8

wayback

Command line program for the Wayback machine.
Python
6
star
9

seclists

Curated list of payloads, passwords and shells that I frequently use.
4
star
10

enum

Local enumeration scripts for Linux and Windows.
Shell
3
star
11

cryptography

My collection of ciphers and various scripts related to cryptography.
2
star
12

owasp-mstg

My Obsidian notes based on the OWASP Mobile Application Security Guide.
1
star
13

algorithms

My collection of algorithms written in Kotlin.
Kotlin
1
star
14

thesis

My thesis on Android reverse engineering and client-server communication.
TeX
1
star
15

walkthroughs

1
star