It’s talking out through Nat, it’s going through your public IP address and you’re attacking a target. If you think about it or reverse shell, you’re sitting in your home network, and you are sitting on a VM, and that VM is using an internal IP address. Now a little bit more about reverse shells, you’re going to use reverse shells 95% of the time, there are instances where you’re going to use bind shells, most likely are going to be on an external assessment. A bind shell means we connect to the target. But all you need to know right now is that a reverse shell means the target connects back to us. Now, this is going to come together very clearly when we get into our exploit development part here in just a little bit. Now if we go back, same thing here, we’re going to send some sort of exploit that’s going to talk back and say, hey, I want to when you exploit this, go ahead and just connect to 4444 on this machine. And then it’s listening for us to connect, when we connect on that specific port to that specific machine with Netcat, then we’re going to go ahead and get that shell and on this site, it’s going to execute for us, that bin sh. So we fire off an exploit that exploits go in and it opens up a port.
So with the bind shell, we actually open up a port on the machine, then we connect to it. We have our attack box, and then our target. So all we’re going to do with the reverse shell is we’re going to listen, now with the bind shell a little bit different. So what we’re going to do is we’re going to say, hey, let’s connect over here, and then this is going to connect. If this was windows, that would be command exe. So I’m going to execute bin shell, which is a Linux machine. On this machine, it’s going to say, hey, Netcat, I want to connect to this IP address here, I want to connect to it on port 4444.Īnd when I do that, I’m going to establish this bin shell here. That means on our machine, we’re opening up that port, when we use Netcat. So what’s happening here is that on the attack box, you can see that we have Netcat, this is NC, and we’re just listening on a port here. So reverse shell means again, a victim connects to us, you see that it says the target is connecting attack box is listening. And you may get asked this question about shells in an interview, what is a reverse shell, what is a buying shell. Here you see it says target connecting to attack box. Reverse shell means that a victim connects to us. So when we say we pop a shell, that means we get access to a machine. And a shell all a shell is is access to a machine. Now in this example, it is using a tool called Netcat, which you’re going to see here shortly. The most common shell, you’re going to see is what is called a reverse shell. So we’re going to quickly define different shell types we’re going to see and then we’re going to define different types of payloads we’re going to see. Before we could start the cool exploitation phase, we have to first define a couple of things.
0 kommentar(er)
