redcode-labs/Revssl

Stars
298
Rank 139,663 (Top 3 %)
Language
Shell
License
MIT License
Created over 5 years ago
Updated about 4 years ago

redcode-labs/Revssl

redcode-labs

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A script that automates generation of OpenSSL reverse shells

A simple Bash script that makes generation of OpenSSL reverse shells painless

Table of Contents

Introduction
Usage
Screenshot
License

Introduction

Revssl was created mainly to automate the OpenSSL reverse shell idea from here, and pack it into a single script. It can generate agents both for Linux and Windows, providing a secure and encrypted remote control channel. I am still working on OSX implementation. This code isn't perfect, so feel free to open new issues and contribute :D

Usage

usage: revssl [-h] [-i] [-e <encryption>] [-d <days>] [-l <lhost>]
              [-p <lport>] [-k <keyname>] [-c <certname>] [-p <platform>]
              [-o] [-n <outfile>] [-s <domain>] [-r]
options:
 -h     Show help message
 -i     Initiate listener in OpenSSL
 -e <encryption>
        Choose encryption type (default: rsa:4096)
 -d <days>
        Set certificates lifetime
 -l <lhost>
        Set listening host (default: 192.168.1.102)
 -p <port>
        Set listening port (default: 443)
 -k <keyname>
        Set name of generated key file (default: key.pem)
 -c <certname>
        Set name of generated cert file (default: cert.pem)
 -p <platform>
        Select agent platform (windows or linux, default: linux)
 -s <domain>
        Domain name for Windows Powershell agent (default: domain.xyz)
 -o     Write agent to a file
 -n <outfile>
        Select name of the agent file (default: openssl_revshell)
 -r     Remove generated certificates after established session

Screenshot

License

This software is under MIT License

neurax

A framework for constructing self-spreading binaries

Coldfire

Golang malware development library

Bashark

Bash post exploitation toolkit

easyWSL

Create WSL distros based on Docker Images.

Citadel

Collection of pentesting scripts

SNOWCRASH

A polyglot payload generator

GoSH

Golang reverse/bind shell generator

AirStrike

Automatically grab and crack WPA-2 handshakes with distributed client-server architecture

RedNixOS

NixOS-based 'distro' for cybersecurity enthusiasts

Netenum

A tool to passively discover active hosts on a network

Sammler

A tool to extract useful data from documents

VTSCAN

VirusTotal API script

RedNix

Hackable NixOS container

BMJ

Code snippets for bare-metal malware development

YAS

Yet Another Sniffer for monitoring network traffic

GodSpeed

Fast and intuitive manager for multiple reverse shells

UnChain

A tool to find redirection chains in multiple URLs

meducat

Combinations of default usernames and passwords for the Medusa and Hashcat password cracker

REVENANT

Volatile ELF payloads generator with Metasploit integrations for testing GNU/Linux ecosystems

Solaris

A local LKM rootkit loader/dropper that lists available security mechanisms

Svetovid

A bunch of post exploitation tools + reverse proxy server

pentest-cheatsh-it

Pentesting cheatsheet

RedSand

Windows SandBox environment for cybersecurity enthusiasts

poXSSon

A framework for easy payloads development and deployment, collection of customizable XSS payloads

Penthon

Useful python functions for pentesting, networking, data conversion and automation

POWERPROMPT

A colorful, informative prompt for Zsh

RedHash

Medusa combo files, Hashcat rules and dictionaries, JRT rules

RedMark

Our fork of Iceman's fork for Proxmark III

LLT

Shellcoding scripts and utilities

word-processing-rules

Rules for Hashcat, HCRE and JTR

talks

slides from talks of our members