This project forked from ni4n/secshell
基于openssl实现的加密反弹shell小工具
License: MIT License
在攻防演练时直接反弹shell后执行命令时会以明文形式传输,很容易被检测到,而利用openssl的单向认证可以对反弹shell后执行命令的流量进行加密。本工具对生成证书、监听端口等流程进行自动化集成,以提高工作效率。并且提供反弹shell命令生成脚本用于根据指定的IP和端口生成Base64加密的反弹shell命令。
本工具仅用于研究与学习,请严格遵守当地法律法规,禁止使用本工具发起非法攻击等行为,基于非法攻击造成的后果由使用者负责。
一键启动:默认生成证书,监听4444端口
./server.sh
或者指定证书,指定端口
./server.sh -k key.pem -c cert.pem -p 8888
生成反弹shell命令
./client.sh -s 192.168.73.129:4444
在客户端粘贴命令,反弹shell
启动服务端时出现以下报错说明端口被占用,可选择其它端口,或者杀掉对应进程后再启动
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google ❤️ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.