rce
Remote Code Execution patterns, command injection, deserialization attacks.
Load with: use rce
Quick example
use rce
result = rcere("value", 8080)
prn(result)Functions
Command injection payloads
rceba()
Performs the operation.
rceti()
Performs the operation.
rcere(ip, port)
Performs the operation. Takes ip, port.
rcere(ip, port)
Performs the operation. Takes ip, port.
Filter bypasses
rceby(cmd)
Performs the operation. Takes cmd.
rceip(ip)
Performs the operation. Takes ip.
Deserialization attacks
rcede()
Decodes.
rcede()
Decodes.
rcede()
Decodes.
rcede()
Decodes.
Template injection to RCE
rcess(engine)
Performs the operation. Takes engine.
XML external entity (XXE) to RCE
cexxe()
Performs the operation.
Log4j / JNDI injection
cel4j(callback_url)
Performs the operation. Takes callback_url.
Detection
cedet(response)
Performs the operation. Takes response.
PHP file inclusion to RCE
cephp()
Performs the operation.
Server-side template injection detection
cesst(template)
Sets a value or starts a process. Takes template.
Notes
- Remote code execution primitives. Use only on systems you own.