react2shell

Resources for red team operators to discover & exploit react2shell vulnerabilities. For authorized use only. I am not responsible for your actions.

Recon Automation Bookmarklet

Related PoCs

• maple3142 RCE PoC

Related Exploit Chain - Trend Micro Research

base64 encoding bash one-liners

echo “<bash one-liner>” | base64

Running base64 encoded bash one-liners

echo “<base64 encoded one-liner>” | base64 -d | bash

example - creating a host fingerprinting one-liner:

echo "uname -a && id && ip address |  grep -oP 'inet.*' " | base64

example - running base64 encoded host fingerprinting one-liner:

echo "dW5hbWUgLWEgJiYgaWQgJiYgaXAgYWRkcmVzcyB8ICBncmVwIC1vUCAnaW5ldC4qJyAK" | base64 -d | bash

Related Industry Articles

• SonicWall Capture Labs
• Trend Micro Research
• Splunk Research

Labs

• TryHackMe