Skip to content

InfosecMatter/terminal-escape-injections

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
README.md
README.md
 
 
script.bat
script.bat
 
 
script.ps1
script.ps1
 
 
script.py
script.py
 
 
script.sh
script.sh
 
 

Repository files navigation

Terminal escape injection PoCs

This repository contains sample PoC codes demonstrating the terminal escape injection vulnerability which affects all modern systems including:

  • Microsoft Windows 10
  • Mac OS
  • Linux

See the main article here: https://www.infosecmatter.com/terminal-escape-injection/

Terminal injection in a shell script on Linux:

esc-inject-shell-linux-gnome-terminal

Tested on:

  • Linux (gnome-terminal, xterm, aterm)
  • Mac OS (Terminal 2.0, iTerm2)
  • Cygwin (Windows)

Terminal injection in a python script on Mac OS:

esc-inject-python-mac-terminal

Tested on:

  • Linux (gnome-terminal, xterm, aterm)
  • Mac OS (Terminal 2.0, iTerm2)
  • Cygwin (Windows)

Terminal injection in a batch (.bat) file on Windows:

esc-inject-bat-win-cmd

Tested on:

  • Windows 10 PowerShell
  • Windows 10 Command Prompt

Terminal injection in a PowerShell (.ps1) script on Windows:

esc-inject-ps1-win-powershell

Tested on:

  • Windows 10 PowerShell
  • Windows 10 Command Prompt

For more information, visit https://www.infosecmatter.com/terminal-escape-injection/

About

A repository dedicated to terminal escape injections.

Topics

windows macos linux injection escape-sequences safety terminal-emulator deception arbitrary-code-execution escape-injection

Resources

Readme
Activity

Stars

65 stars

Watchers

4 watching

Forks

14 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages