Reverse Http Shell Solution

• Previous message: Alex Butcher (pentest): "Re: Lab leads??"
• Next in thread: Frank Knobbe: "RE: Reverse Http Shell Solution"
• Reply: Frank Knobbe: "RE: Reverse Http Shell Solution"
• Reply: David Sexton: "RE: Reverse Http Shell Solution"
• Reply: Jody Melbourne: "Re: Reverse Http Shell Solution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Subject: Reverse Http Shell Solution 
Date: Thu, 18 Oct 2001 10:41:16 -0300
Message-ID: <D7E3F9EDE918EF49B877CAD62FCEFF00043EFF@hermes.atenas.net>
From: "Vinicius Dalesandro" <vdalesandro@proteus.com.br>
To: <pen-test@securityfocus.com>

Does anybody know any solution based on the remote shell in Win32
machines using Reverse Telnet thru Proxies?
The proxy only permits HTTP 80/8080.

Sample of Reverse Http Shell:

  Winnt/2K Http
Linux/Win2k
 +--------+ Http +-------+ +----------+ Http
+-------------+
 |Internal|----------->| PROXY |-->| FIREWALL |<--------->| Atacker
|
 +--------+ +-------+ +----------+
+-------------+
   SLAVE MASTER

I have tried using Rwwwshell.pl (
http://packetstormsecurity.org/groups/thc/rwwwshell-1.6.perl ,but, I
can´t run it on Win32 machines in slave mode. I have tested on CygWin
and that works fine, but, the slave won´t be CygWin!

Cheers

Vinícius D´Alesandro
Proteus Security Systems
http://www.proteus-sec.com/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

• Previous message: Alex Butcher (pentest): "Re: Lab leads??"
• Next in thread: Frank Knobbe: "RE: Reverse Http Shell Solution"
• Reply: Frank Knobbe: "RE: Reverse Http Shell Solution"
• Reply: David Sexton: "RE: Reverse Http Shell Solution"
• Reply: Jody Melbourne: "Re: Reverse Http Shell Solution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: the exploit that wasnt ... The other Mac Book Pro? ... brought Microsoft into a security discussion about Mac OS X. ... The number of security patches, ... if you were to scan random machines on the internet for a week, how many Unix machines do you believe you would hit? ... (comp.sys.mac.advocacy) Re: Cryptogram Comment ... Or had to go through setting up basic security for their ... > bother me with Windows questions. ... > machines are broken. ... and Linux and other open OS's make all patches FREE to redistribute. ... (sci.crypt) Re: Temporary Ban On Links In Posts To SRI ... understand that there is a risk when clicking ... low)" in the general case does not apply to SRI. ... implement the security measures recommended. ... update" even with machines that are restricted to only applications ... (soc.religion.islam) Re: the exploit that wasnt ... The other Mac Book Pro? ... brought Microsoft into a security discussion about Mac OS X. ... The number of security patches, ... if you were to scan random machines on the internet for a week, ... (comp.sys.mac.advocacy) Re: Small Business Server Networking Wizard was not installed ... IE browser helper toolbar with some sort of security features enabled. ... WINSOCK fix, all these things were done on both of these machines, nothing ... Server Networking Wizard would not run on and nothing helped. ... ActivX garbage to install on either of these two machines. ... (microsoft.public.windows.server.sbs)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint