https://github.com/Traumatism/raycharles

Blind RCE fuzzer
https://github.com/Traumatism/raycharles

bugbounty command-injection fuzz fuzzer fuzzing hacking injection pwn rce remote-code-execution

Last synced: 4 months ago
JSON representation

Blind RCE fuzzer

• Host: GitHub
• URL: https://github.com/Traumatism/raycharles
• Owner: Traumatism
• Created: 2023-02-19T22:28:33.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2023-07-21T11:13:04.000Z (almost 2 years ago)
• Last Synced: 2023-07-21T12:41:59.346Z (almost 2 years ago)
• Topics: bugbounty, command-injection, fuzz, fuzzer, fuzzing, hacking, injection, pwn, rce, remote-code-execution
• Language: Python
• Homepage:
• Size: 4.5 MB
• Stars: 12
• Watchers: 1
• Forks: 2
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
## Ray Charles 😎

A little blind remote command execution fuzzing tool.

![](./screenshot.png)

## Usage

Clone the repo:

- `git clone https://github.com/traumatism/raycharles.git`

Install dependecies:

- `pip install -r requirements.txt`

Run the scan:

- `python3 -m raycharles --help`

![](./screenshot2.png)

## Credits

- https://www.gnu.org/software/bash/manual/bash.html

- https://en.wikipedia.org/wiki/Arbitrary_code_execution

- https://gist.github.com/ecriminal/01c46176ca26c32e76c00d7c4737b1bd the true rce god

- https://book.hacktricks.xyz/linux-hardening/bypass-bash-restrictions