Presentation is loading. Please wait.

Presentation is loading. Please wait.

Reverse Shell.

Published byIwan Lesmono Modified over 4 years ago

Similar presentations

Presentation on theme: "Reverse Shell."— Presentation transcript:

1 Reverse Shell

2 Overview File descriptor Standard input and output devices
Redirecting standard input and output How reverse shell works

3 The Idea of Reverse Shell

4 File Descriptor Execution Result

5 File Descriptor Table

6 Standard I/O Devices Execution Result

7 Redirection An example Redirecting to file
Redirecting to file descriptor

8 How Is Redirection Implemented?
Creates a copy of the file descriptor oldfp, and then assign newfd as the new file descriptor.

9 The Change of File Descriptor Table

10 Redirecting Output to TCP Connections

11 Redirecting Input to TCP Connections

12 Redirecting to TCP from Shell
Redirecting Input Redirecting Output Running a TCP server on $ nc –l 9090

13 Note /dev/tcp is not a real folder: it dos not exist
It is a built-in virtual file/folder for bash only Redirection to /dev/tcp/… can only be done inside bash

14 Reverse Shell Overview

15 Redirecting Standard Output
On Attacker Machine ( ) On Server Machine

16 Redirecting Standard Input & Output
On Server Machine

17 Redirecting Standard Error, Input, & Output
On Server Machine

18 Reverse Shell via Code Injection
Reverse shell is executed via injected code Can’t assume that the target machine runs bash Run bash first:

19 Summary Reverse shell works by redirecting shell program’s input/output Input and output of a program can be redirected to a TCP connection The other end of the TCP connection is attacker It is a widely used technique by attackers

Download ppt "Reverse Shell."

Similar presentations

Operating Systems (CSCI2413) Lecture 2 Overview phones off (please)

Operating Systems (CSCI2413) Lecture 2 Overview phones off (please)
LECTURE 1 CMSC 201. Overview Goal: Problem solving and algorithm development. Learn to program in Python. Algorithm - a set of unambiguous and ordered.

LECTURE 1 CMSC 201. Overview Goal: Problem solving and algorithm development. Learn to program in Python. Algorithm - a set of unambiguous and ordered.
Slope intercept form of an equation

Slope intercept form of an equation
Information flow inside the computer IT skills: none IT concepts: computer components (input devices, output devices, memory, storage and CPU), program.

Information flow inside the computer IT skills: none IT concepts: computer components (input devices, output devices, memory, storage and CPU), program.
Input-output and Communication Prof. Sin-Min Lee Department of Computer Science.

Input-output and Communication Prof. Sin-Min Lee Department of Computer Science.
UNIX Chapter 01 Overview of Operating Systems Mr. Mohammad A. Smirat.

UNIX Chapter 01 Overview of Operating Systems Mr. Mohammad A. Smirat.
AVR32 GPIO CS-423 Dick Steflik. What is a GPIO GPIO – General Purpose Input/Output  Flexible software control digital signal  Each GPIO represents a.

AVR32 GPIO CS-423 Dick Steflik. What is a GPIO GPIO – General Purpose Input/Output  Flexible software control digital signal  Each GPIO represents a.
Altera DE2 Board and Quartus II Software ECE 3450 M. A. Jupina, VU, 2014.

Altera DE2 Board and Quartus II Software ECE 3450 M. A. Jupina, VU, 2014.
How to install the Zelle graphics package

How to install the Zelle graphics package
Processor Types And Instruction Sets Barak Perelman CS147 Prof. Lee.

Processor Types And Instruction Sets Barak Perelman CS147 Prof. Lee.
Installing software on personal computer

Installing software on personal computer
Copyright © 2014, 2015 William R. Vaughn All rights reserved William R. Vaughn.

Copyright © 2014, 2015 William R. Vaughn All rights reserved William R. Vaughn.
Input/OUTPUT [I/O Module structure].

Input/OUTPUT [I/O Module structure].
Week 7 Working with the BASH Shell. Objectives  Redirect the input and output of a command  Identify and manipulate common shell environment variables.

Week 7 Working with the BASH Shell. Objectives  Redirect the input and output of a command  Identify and manipulate common shell environment variables.
CIT 140: Introduction to ITSlide #1 CSC 140: Introduction to IT I/O Redirection.

CIT 140: Introduction to ITSlide #1 CSC 140: Introduction to IT I/O Redirection.
CSC 322 Operating Systems Concepts Lecture - 4: by Ahmed Mumtaz Mustehsan Special Thanks To: Tanenbaum, Modern Operating Systems 3 e, (c) 2008 Prentice-Hall,

CSC 322 Operating Systems Concepts Lecture - 4: by Ahmed Mumtaz Mustehsan Special Thanks To: Tanenbaum, Modern Operating Systems 3 e, (c) 2008 Prentice-Hall,
Segmentation & O/S Input/Output Chapter 4 & 5 Tuesday, April 3, 2007.

Segmentation & O/S Input/Output Chapter 4 & 5 Tuesday, April 3, 2007.
BASIC INPUT AND OUTPUT INTERFACING.  8085A communicate with outside world using the I/O devices.  Since memory and I/O devices share the system bus,

BASIC INPUT AND OUTPUT INTERFACING.  8085A communicate with outside world using the I/O devices.  Since memory and I/O devices share the system bus,
Most modern operating systems incorporate these five components.

Most modern operating systems incorporate these five components.
1 Dryad Distributed Data-Parallel Programs from Sequential Building Blocks Michael Isard, Mihai Budiu, Yuan Yu, Andrew Birrell, Dennis Fetterly of Microsoft.

1 Dryad Distributed Data-Parallel Programs from Sequential Building Blocks Michael Isard, Mihai Budiu, Yuan Yu, Andrew Birrell, Dennis Fetterly of Microsoft.

Similar presentations

Ads by Google