TSEC NEWS: 06.05.21 Cron-Job Fehlerhaft nach PHP Update + PWA mobile + Desktop / 04.05.21 - Android App von TSECURITY 28.04.21 - NEUER SERVER // 26.04.21 ++ Download the Electron-App für tsecurity.de // Über 550 Feed-Quellen


❈ Statically-linked ssh server with reverse shell functionality for CTFs

Linux Tipps reddit.com

submitted by /u/beleeee_dat
[link] [comments]...


Kompletten Artikel lesen (externe Quelle: https://www.reddit.com/r/linux/comments/oorxk4/staticallylinked_ssh_server_with_reverse_shell/)

Zur Startseite

➤ Weitere Beiträge von Team Security | IT Sicherheit (tsecurity.de)

Ssh-Mitm - Ssh Mitm Server For Security Audits Supporting Public Key Authentication, Session Hijacking And File Manipulation

vom 464.77 Punkte
ssh-mitm is an intercepting (mitm) proxy server for security audits. Redirect/mirror Shell to another ssh client supported in 0.2.8 Replace File in SCP supported in 0.2.6 Replace File in SFTP supported in 0.2.3 Transparent proxy support in 0.2.2!

Shell Backdoor List - PHP / ASP Shell Backdoor List

vom 453.19 Punkte
What is a shell backdoor ?A backdoor shell is a malicious piece of code (e.g. PHP, Python, Ruby) that can be uploaded to a site to gain access to files stored on that site. Once it is uploaded, the hacker can use it to edit, delete, or download any files o

packetStrider - A Network Packet Forensics Tool For SSH

vom 451.69 Punkte
packetStrider for SSH is a packet forensics tool that aims to provide valuable insight into the nature of SSH traffic, shining a light into the corners of SSH network traffic where golden nuggets of information previously lay in the dark.The problem that packe

HTTP Asynchronous Reverse Shell - Asynchronous Reverse Shell Using The HTTP Protocol

vom 368.39 Punkte
Today there are many ways to create a reverse shell in order to be able to remotely control a machine through a firewall. Indeed, outgoing connections are not always filtered.However security software and hardware (IPS, IDS, Proxy, AV, EDR...) are more an

Sshtunnel - SSH Tunnels To Remote Server

vom 365.08 Punkte
Inspired by https://github.com/jmagnusson/bgtunnel, which doesn't work on Windows.See also: https://github.com/paramiko/paramiko/blob/master/demos/forward.py Requirementsparamiko Installationsshtunnel is on PyPI, so simply run:pip install sshtunneloreasy_

Sish - HTTP(S)/WS(S)/TCP Tunnels To Localhost Using Only SSH

vom 359.38 Punkte
An open source serveo/ngrok alternative.Deploy Builds are made automatically for each commit to the repo and are pushed to Dockerhub. Builds are tagged using a commit sha, branch name, tag, latest if released on main. You can find a list here. Eac

ZIP Shotgun - Utility Script To Test Zip File Upload Functionality (And Possible Extraction Of Zip Files) For Vulnerabilities

vom 318.77 Punkte
Utility script to test zip file upload functionality (and possible extraction of zip files) for vulnerabilities. Idea for this script comes from this post on Silent Signal Techblog - Compressed File Upload And Command Execution and from OWASP - Test Upload of Malicious Files This script will create archive which contains files with "../" in filename. When extracting this could cause files to be ext

DevAudit - Open-source, Cross-Platform, Multi-Purpose Security Auditing Tool

vom 272.39 Punkte
DevAudit is an open-source, cross-platform, multi-purpose security auditing tool targeted at developers and teams adopting DevOps and DevSecOps that detects security vulnerabilities at multiple levels of the solution stack. DevAudit provides a wide array

MMD-0037-2015 - A bad Shellshock & Linux/XOR.DDoS CNC "under the hood"

vom 268.71 Punkte
The background Yesterday was a hectic day when we gathered to check all recent ELF threats cross-fired in the internet traffic when I was informed of a recent shellshock attack. Seeing the command pattern of the one-liner shell executed script used I knew

MMD-0037-2015 - A bad Shellshock & Linux/XOR.DDoS CNC "under the hood"

vom 268.71 Punkte
The background Yesterday was a hectic day when we gathered to check all recent ELF threats cross-fired in the internet traffic when I was informed of a recent shellshock attack. Seeing the command pattern of the one-liner shell executed script used I knew

Shellerator - Simple CLI Tool For The Generation Of Bind And Reverse Shells In Multiple Languages

vom 263.81 Punkte
Shellerator is a simple command-line tool aimed to help pentesters quickly generate one-liner reverse/bind shells in multiple languages (Bash, Powershell, Java, Python...). This project is inspired by Print-My-Shell. I just rewrote it and added some options and

Mediator - An Extensible, End-To-End Encrypted Reverse Shell With A Novel Approach To Its Architecture

vom 248.48 Punkte
Mediator is an end-to-end encrypted reverse shell in which the operator and the shell connect to a "mediator" server that bridges the connections. This removes the need for the operator/handler to set up port forwarding in order to listen for the connec

Team Security Diskussion über Statically-linked ssh server with reverse shell functionality for CTFs