evan/ewpratten.com
1
Fork 0
Code Actions

Feed update

Browse Source
This commit is contained in:
Evan Pratten 2019-06-26 16:47:27 -04:00
parent 95ce966143
commit c5672e6596
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
_site/feed.xml
View File

@ -1,4 +1,4 @@
<?xml version="1.0" encoding="utf-8"?><feed xmlns="http://www.w3.org/2005/Atom" ><generator uri="https://jekyllrb.com/" version="3.8.5">Jekyll</generator><link href="http://localhost:4000/feed.xml" rel="self" type="application/atom+xml" /><link href="http://localhost:4000/" rel="alternate" type="text/html" /><updated>2019-06-26T16:46:55-04:00</updated><id>http://localhost:4000/feed.xml</id><title type="html">Evan Pratten</title><subtitle>Computer wizard, student, &lt;a href=&quot;https://github.com/frc5024&quot;&gt;@frc5024&lt;/a&gt; programming team lead, and radio enthusiast.</subtitle><entry><title type="html">BashSmash</title><link href="http://localhost:4000/random/2019/06/26/BashSmash.html" rel="alternate" type="text/html" title="BashSmash" /><published>2019-06-26T11:48:00-04:00</published><updated>2019-06-26T11:48:00-04:00</updated><id>http://localhost:4000/random/2019/06/26/BashSmash</id><content type="html" xml:base="http://localhost:4000/random/2019/06/26/BashSmash.html">&lt;p&gt;I was watching this great &lt;a href=&quot;https://www.google.com/url?sa=t&amp;amp;rct=j&amp;amp;q=&amp;amp;esrc=s&amp;amp;source=web&amp;amp;cd=1&amp;amp;cad=rja&amp;amp;uact=8&amp;amp;ved=2ahUKEwiOhNze_4fjAhUiB50JHR12D8AQwqsBMAB6BAgJEAQ&amp;amp;url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3D6D1LnMj0Yt0&amp;amp;usg=AOvVaw2nOgft0SoPZujc9js9Vxhx&quot;&gt;Liveoverflow video&lt;/a&gt; yesterday, and really liked the idea of building escape sequences with strings. So, I built a new tool, &lt;a href=&quot;https://pypi.org/project/bashsmash/&quot;&gt;BashSmash&lt;/a&gt;.&lt;/p&gt;
<?xml version="1.0" encoding="utf-8"?><feed xmlns="http://www.w3.org/2005/Atom" ><generator uri="https://jekyllrb.com/" version="3.8.5">Jekyll</generator><link href="http://localhost:4000/feed.xml" rel="self" type="application/atom+xml" /><link href="http://localhost:4000/" rel="alternate" type="text/html" /><updated>2019-06-26T16:47:16-04:00</updated><id>http://localhost:4000/feed.xml</id><title type="html">Evan Pratten</title><subtitle>Computer wizard, student, &lt;a href=&quot;https://github.com/frc5024&quot;&gt;@frc5024&lt;/a&gt; programming team lead, and radio enthusiast.</subtitle><entry><title type="html">BashSmash</title><link href="http://localhost:4000/random/2019/06/26/BashSmash.html" rel="alternate" type="text/html" title="BashSmash" /><published>2019-06-26T11:48:00-04:00</published><updated>2019-06-26T11:48:00-04:00</updated><id>http://localhost:4000/random/2019/06/26/BashSmash</id><content type="html" xml:base="http://localhost:4000/random/2019/06/26/BashSmash.html">&lt;p&gt;I was watching this great &lt;a href=&quot;https://www.google.com/url?sa=t&amp;amp;rct=j&amp;amp;q=&amp;amp;esrc=s&amp;amp;source=web&amp;amp;cd=1&amp;amp;cad=rja&amp;amp;uact=8&amp;amp;ved=2ahUKEwiOhNze_4fjAhUiB50JHR12D8AQwqsBMAB6BAgJEAQ&amp;amp;url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3D6D1LnMj0Yt0&amp;amp;usg=AOvVaw2nOgft0SoPZujc9js9Vxhx&quot;&gt;Liveoverflow video&lt;/a&gt; yesterday, and really liked the idea of building escape sequences with strings. So, I built a new tool, &lt;a href=&quot;https://pypi.org/project/bashsmash/&quot;&gt;BashSmash&lt;/a&gt;.&lt;/p&gt;
&lt;h2 id=&quot;the-goal&quot;&gt;The goal&lt;/h2&gt;
&lt;p&gt;The goal of BashSmash is very similar to that described in Liveoverflows video. Do anything in bash without using any letters or numbers except &lt;code class=&quot;highlighter-rouge&quot;&gt;n&lt;/code&gt; and &lt;code class=&quot;highlighter-rouge&quot;&gt;f&lt;/code&gt; (he used &lt;code class=&quot;highlighter-rouge&quot;&gt;i&lt;/code&gt; instead of &lt;code class=&quot;highlighter-rouge&quot;&gt;f&lt;/code&gt;). This can both bypass shell injection filters, and generally mess with people.&lt;/p&gt;