> ## Documentation Index
> Fetch the complete documentation index at: https://rootea.es/llms.txt
> Use this file to discover all available pages before exploring further.

# OS Command Injection

> Recursos cross-platform para OS Command Injection: máquinas HTB, labs PortSwigger y rooms TryHackMe curados, con writeups validados y skills relacionadas.

# OS Command Injection

Esta página agrega los **recursos para practicar OS Command Injection** de forma cross-platform: máquinas retiradas de Hack The Box, labs de PortSwigger Web Security Academy y rooms de TryHackMe, más recursos curados (HackTricks, PortSwigger, etc.) y skills relacionadas.

## Recursos curados

| Fuente      | Enlace                                                                                                                 |
| ----------- | ---------------------------------------------------------------------------------------------------------------------- |
| PortSwigger | [https://portswigger.net/web-security/os-command-injection](https://portswigger.net/web-security/os-command-injection) |

## Máquinas HTB que practican OS Command Injection (17)

| Máquina                                                  | SO      | Dificultad                                           |
| -------------------------------------------------------- | ------- | ---------------------------------------------------- |
| [Anubis](/htb/machines/windows/insano/anubis)            | Windows | <span className="dbadge dbadge-insane">INSANE</span> |
| [Cronos](/htb/machines/linux/medio/cronos)               | Linux   | <span className="dbadge dbadge-medium">MEDIUM</span> |
| [Doctor](/htb/machines/linux/facil/doctor)               | Linux   | <span className="dbadge dbadge-easy">EASY</span>     |
| [FluxCapacitor](/htb/machines/linux/medio/fluxcapacitor) | Linux   | <span className="dbadge dbadge-medium">MEDIUM</span> |
| [Fortune](/htb/machines/linux/insano/fortune)            | Linux   | <span className="dbadge dbadge-insane">INSANE</span> |
| [Haircut](/htb/machines/linux/medio/haircut)             | Linux   | <span className="dbadge dbadge-medium">MEDIUM</span> |
| [Netmon](/htb/machines/windows/facil/netmon)             | Windows | <span className="dbadge dbadge-easy">EASY</span>     |
| [Nightmare](/htb/machines/linux/insano/nightmare)        | Linux   | <span className="dbadge dbadge-insane">INSANE</span> |
| [Node](/htb/machines/linux/medio/node)                   | Linux   | <span className="dbadge dbadge-medium">MEDIUM</span> |
| [Noter](/htb/machines/linux/medio/noter)                 | Linux   | <span className="dbadge dbadge-medium">MEDIUM</span> |
| [Obscurity](/htb/machines/linux/medio/obscurity)         | Linux   | <span className="dbadge dbadge-medium">MEDIUM</span> |
| [Player](/htb/machines/linux/dificil/player)             | Linux   | <span className="dbadge dbadge-hard">HARD</span>     |
| [RouterSpace](/htb/machines/linux/facil/routerspace)     | Linux   | <span className="dbadge dbadge-easy">EASY</span>     |
| [ScriptKiddie](/htb/machines/linux/facil/scriptkiddie)   | Linux   | <span className="dbadge dbadge-easy">EASY</span>     |
| [Union](/htb/machines/linux/medio/union)                 | Linux   | <span className="dbadge dbadge-medium">MEDIUM</span> |
| [Unobtainium](/htb/machines/linux/dificil/unobtainium)   | Linux   | <span className="dbadge dbadge-hard">HARD</span>     |
| [Writer](/htb/machines/linux/medio/writer)               | Linux   | <span className="dbadge dbadge-medium">MEDIUM</span> |

## Labs PortSwigger que practican OS Command Injection (5)

| Lab                                                                                                                                         | Dificultad                                                 | Topic                | Oficial                                                                                                    |
| ------------------------------------------------------------------------------------------------------------------------------------------- | ---------------------------------------------------------- | -------------------- | ---------------------------------------------------------------------------------------------------------- |
| [OS command injection, simple case](/portswigger/labs/os-command-injection/simple)                                                          | <span className="dbadge dbadge-easy">APPRENTICE</span>     | OS Command Injection | [Abrir](https://portswigger.net/web-security/os-command-injection/lab-simple)                              |
| [Blind OS command injection with out-of-band data exfiltration](/portswigger/labs/os-command-injection/blind-out-of-band-data-exfiltration) | <span className="dbadge dbadge-medium">PRACTITIONER</span> | OS Command Injection | [Abrir](https://portswigger.net/web-security/os-command-injection/lab-blind-out-of-band-data-exfiltration) |
| [Blind OS command injection with out-of-band interaction](/portswigger/labs/os-command-injection/blind-out-of-band)                         | <span className="dbadge dbadge-medium">PRACTITIONER</span> | OS Command Injection | [Abrir](https://portswigger.net/web-security/os-command-injection/lab-blind-out-of-band)                   |
| [Blind OS command injection with output redirection](/portswigger/labs/os-command-injection/blind-output-redirection)                       | <span className="dbadge dbadge-medium">PRACTITIONER</span> | OS Command Injection | [Abrir](https://portswigger.net/web-security/os-command-injection/lab-blind-output-redirection)            |
| [Blind OS command injection with time delays](/portswigger/labs/os-command-injection/blind-time-delays)                                     | <span className="dbadge dbadge-medium">PRACTITIONER</span> | OS Command Injection | [Abrir](https://portswigger.net/web-security/os-command-injection/lab-blind-time-delays)                   |

## Rooms TryHackMe que practican OS Command Injection (5)

| Room                                                                                         | Dificultad                                         | Tipo        | Acceso  | Oficial                                                                   |
| -------------------------------------------------------------------------------------------- | -------------------------------------------------- | ----------- | ------- | ------------------------------------------------------------------------- |
| [Advent of Cyber 2022](/tryhackme/rooms/adventofcyber4)                                      | <span className="dbadge dbadge-easy">EASY</span>   | Walkthrough | 🟢 Free | [Abrir](https://tryhackme.com/room/adventofcyber4)                        |
| [Avengers Blog](/tryhackme/rooms/avengers)                                                   | <span className="dbadge dbadge-easy">EASY</span>   | Walkthrough | 🔵 VIP  | [Abrir](https://tryhackme.com/room/avengers)                              |
| [Command Injection](/tryhackme/rooms/oscommandinjection)                                     | <span className="dbadge dbadge-easy">EASY</span>   | Walkthrough | 🔵 VIP  | [Abrir](https://tryhackme.com/room/oscommandinjection)                    |
| [Web Attack Forensics - Drone Alone](/tryhackme/rooms/webattackforensics-aoc2025-b4t7c1d5f8) | <span className="dbadge dbadge-easy">MEDIUM</span> | Walkthrough | 🟢 Free | [Abrir](https://tryhackme.com/room/webattackforensics-aoc2025-b4t7c1d5f8) |
| [envizon](/tryhackme/rooms/envizon)                                                          | <span className="dbadge dbadge-easy">HARD</span>   | Challenge   | 🟢 Free | [Abrir](https://tryhackme.com/room/envizon)                               |

## Skills relacionadas

* [/skills/rce](/skills/rce)

***

← [Volver al glosario completo](/glosario)

<script type="application/ld+json">
  {`{"@context":"https://schema.org","@type":"DefinedTerm","name":"OS Command Injection","termCode":"command-injection","inLanguage":"es","url":"https://rootea.es/skills/command-injection","inDefinedTermSet":{"@type":"DefinedTermSet","name":"Glosario táctico de pentesting","url":"https://rootea.es/glosario"}}`}
</script>

<script type="application/ld+json">
  {`{"@context":"https://schema.org","@type":"ItemList","name":"Máquinas HTB que practican OS Command Injection","numberOfItems":17,"itemListElement":[{"@type":"ListItem","position":1,"url":"https://rootea.es/htb/machines/windows/insano/anubis","name":"Anubis"},{"@type":"ListItem","position":2,"url":"https://rootea.es/htb/machines/linux/medio/cronos","name":"Cronos"},{"@type":"ListItem","position":3,"url":"https://rootea.es/htb/machines/linux/facil/doctor","name":"Doctor"},{"@type":"ListItem","position":4,"url":"https://rootea.es/htb/machines/linux/medio/fluxcapacitor","name":"FluxCapacitor"},{"@type":"ListItem","position":5,"url":"https://rootea.es/htb/machines/linux/insano/fortune","name":"Fortune"},{"@type":"ListItem","position":6,"url":"https://rootea.es/htb/machines/linux/medio/haircut","name":"Haircut"},{"@type":"ListItem","position":7,"url":"https://rootea.es/htb/machines/windows/facil/netmon","name":"Netmon"},{"@type":"ListItem","position":8,"url":"https://rootea.es/htb/machines/linux/insano/nightmare","name":"Nightmare"},{"@type":"ListItem","position":9,"url":"https://rootea.es/htb/machines/linux/medio/node","name":"Node"},{"@type":"ListItem","position":10,"url":"https://rootea.es/htb/machines/linux/medio/noter","name":"Noter"},{"@type":"ListItem","position":11,"url":"https://rootea.es/htb/machines/linux/medio/obscurity","name":"Obscurity"},{"@type":"ListItem","position":12,"url":"https://rootea.es/htb/machines/linux/dificil/player","name":"Player"},{"@type":"ListItem","position":13,"url":"https://rootea.es/htb/machines/linux/facil/routerspace","name":"RouterSpace"},{"@type":"ListItem","position":14,"url":"https://rootea.es/htb/machines/linux/facil/scriptkiddie","name":"ScriptKiddie"},{"@type":"ListItem","position":15,"url":"https://rootea.es/htb/machines/linux/medio/union","name":"Union"},{"@type":"ListItem","position":16,"url":"https://rootea.es/htb/machines/linux/dificil/unobtainium","name":"Unobtainium"},{"@type":"ListItem","position":17,"url":"https://rootea.es/htb/machines/linux/medio/writer","name":"Writer"}]}`}
</script>

*Última actualización: 2026-06-07*
