← All tools

GTFOBins

https://gtfobins.github.io

Open Source

Categories

Post-Exploitation

Description

Curated list of Unix binaries that can be used to bypass local security restrictions. Shows how to abuse sudo, SUID, capabilities, and file writes for privilege escalation and shell spawning.

Keywords

privilege escalation SUID sudo Unix binaries GTFOBins shell escape capabilities

Example Usage

# Example: escalate with sudo vim
sudo vim -c ':!/bin/sh'
# Example: read files with SUID less
LFILE=/etc/shadow; less "$LFILE"

See also

Netexec (nxc)

Open Source Kali

The maintained fork and successor to CrackMapExec. Network service exploitation Swiss army knife for…

Evil-WinRM

Open Source Kali

Full-featured WinRM shell for hacking and penetration testing. Supports pass-the-hash, file upload/d…

Sliver

Open Source

Open-source C2 framework from BishopFox. Supports mTLS, WireGuard, HTTP/S, and DNS C2 channels. Feat…

PEASS-ng (WinPEAS / LinPEAS)

Open Source Kali

Privilege Escalation Awesome Scripts Suite. Automatically enumerates Windows (WinPEAS) and Linux/Mac…

Ravage

Open Source

Ravage Framework - Powershell weaponized for offensive security professionals.…

COM-Hunter

Open Source

…