1·
1 month agoIdk about german tracker in particular, but for non-english content, here is good entry point: https://fmhy.net/non-english
- 0 Posts
- 2 Comments
Joined 1 month ago
Cake day: December 28th, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Agreed.
Also gtfobins is a great resource in addition to shellcheck to try to make secure scripts.
For instance I felt upon a script like this recently:
#!/bin/bash # ... some stuff ... tar -caf archive.tar.bz2 "$@"Quotes are OK, shellcheck is happy, but, according to gtfobins, you can abuse tar, so running the script like this:
./test.sh /dev/null --checkpoint=1 --checkpoint-action=exec=/bin/shends up spawning an interactive shell…So you can add up binaries insanity on top of bash’s mess.