Get Reverse-shell via Windows one-liner
This article will help those who play with CTF challenges, because today we will discuss “Windows One- Liner” to use malicious commands such as power shell or rundll32 to get reverse shell of the Windows system. Generally, while abusing HTTP services or other programs, we get RCE vulnerability. This loophole allows you to remotely execute any system command. We have therefore prepared a list of Windows commands that enable you to use the target machine to get reverse connections.
Table of Content
Mshta.exe
- Launch HTA attack via HTA Web Server of Metasploit
Rundll32.exe
- Launch Rundll32 Attack via SMB Delivery of Metasploit
Regsvr32.exe
- Launch Regsvr32 via Script Web Delivery of Metasploit
Certutil.exe
- Launch MSbuild Attack via Msfvenom C# shellcode
Powershell.exe
- Launch Powercat attack via Powershell
- Launch cscript.exe via Powershell
- Launch Batch File Attack via Powershell
Msiexec.exe
- Launch msiexec attack via msfvenom
Wmic.exe
- Launch Wmic.exe attack via Koadic
Full Article Read Here
Senior Security Consultant | Penetration Tester | Offensive Security Engineer
6 年Koadic is nice. Start one listener, plant your payloads and wait for zombies.
Penetration Testing/Red Team/Adversary Emulation/Cybersecurity Architect/Cybersecurity Operations/Governance | OSCP | 2 x AWS | CEH | ML | AI | MCSA | Machine Learning
6 年thank you for sharing
Blockchain Developer, Investor and Educator
6 年Love me some koadic
Penetration Tester | Threat Hunter | Red Teamer ????
6 年nice