{"id":131758,"date":"2023-02-08T17:12:26","date_gmt":"2023-02-08T17:12:26","guid":{"rendered":"https:\/\/blog.finxter.com\/?p=1118920"},"modified":"2023-02-08T17:12:26","modified_gmt":"2023-02-08T17:12:26","slug":"ezpzshell-an-easy-peasy-python-script-that-simplifies-revshell-creation","status":"publish","type":"post","link":"https:\/\/sickgaming.net\/blog\/2023\/02\/08\/ezpzshell-an-easy-peasy-python-script-that-simplifies-revshell-creation\/","title":{"rendered":"EzpzShell: An Easy-Peasy Python Script That Simplifies Revshell Creation"},"content":{"rendered":"\n
\n
\n
\n
\n
<\/div>\n<\/p><\/div>\n
\n
<\/div>\n<\/p><\/div>\n
\n
<\/div>\n<\/p><\/div>\n
\n
<\/div>\n<\/p><\/div>\n
\n
<\/div>\n<\/p><\/div>\n<\/p><\/div>\n
\n
\n
<\/div>\n<\/p><\/div>\n
\n
<\/div>\n<\/p><\/div>\n
\n
<\/div>\n<\/p><\/div>\n
\n
<\/div>\n<\/p><\/div>\n
\n
<\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/div>\n
5\/5 – (1 vote) <\/div>\n<\/p><\/div>\n

EzpzShell = \"Easy Peasy Shell\" <\/code><\/p>\n

\"YouTube<\/a>
<\/figcaption><\/figure>\n

\"\ud83d\udc49\" EzpzShell GitHub<\/strong>: https:\/\/github.com\/H0j3n\/EzpzShell<\/a><\/p>\n

WHAT IS EzpzShell?<\/h2>\n
\n
\"\"\/<\/a><\/figure>\n<\/div>\n

EzpzShell is a Python script that helps to streamline the revshell payload and listener creation process for ethical hackers<\/a>, pentesters<\/a>, and CTF gamers<\/a>. <\/p>\n

\n
\"\"<\/figure>\n<\/div>\n

There are many file types available, and it outputs several different payload options to choose from, letting you pick the most efficient option for your specific use case. <\/p>\n

Today I\u2019ll guide you through the installation and setup of EzpzShell.py<\/code> on Kali Linux in a virtual hacking lab setup. <\/p>\n

\"\ud83d\udc49\" Recommended<\/strong>: How I Set Up My Virtual Hacking Laboratory for Safe and Legal Penetration Testing<\/a><\/p>\n

INSTALLATION<\/h2>\n
\n
\"\"<\/figure>\n<\/div>\n

We\u2019ll need to temporarily switch the internet setting on our attack machine (Kali) to \u201cbridged adapter\u201d. This will create an IP for our virtual machine as if it was a physical machine on our own network. <\/p>\n

After switching the setting, we boot up Kali and grab the Git repo for EzpzShell.py<\/code>.<\/p>\n

\n
\"\"<\/figure>\n<\/div>\n
\n
\"\"<\/figure>\n<\/div>\n

Now that we have installed EzpzShell.py<\/code> on our Kali VM, let\u2019s shut it down and switch the network setting back to \u201chost-only adapter\u201d. <\/p>\n

This will switch the internet off again and put the attack box back into the hacking lab network.<\/p>\n

CREATE A BASH ALIAS<\/h2>\n

To simplify the command (python3 ~\/EzpzShell.py<\/code>) into a one-word command we can add the following line to a new file .bash_aliases<\/code><\/p>\n

\n
\"\"<\/figure>\n<\/div>\n

Next, let\u2019s run the following command to make the bash alias permanent.<\/p>\n

source ~\/.bashrc<\/pre>\n
Now we can easily run EzPzShell.py<\/code> from any directory on Kali with the command:<\/p>\n
ezpz<\/pre>\n
EXAMPLE OF A REVERSHELL EZPZSHELL ON OUR VIRTUAL HACKINGLAB<\/h2>\n
\n
\"\"<\/figure>\n<\/div>\n
We\u2019ll run the command \u201cezpz 192.168.60.4 8888 py<\/code>\u201d to see a list of reverse shell payloads. <\/p>\n
This is quicker than poking around the web for the right kind of shell, and it is also super handy that the listener is automatically started up and set to receive the revshell. <\/p>\n
Let\u2019s use the first payload, the python script:<\/p>\n
\n
\"\"<\/figure>\n<\/div>\n
After copying and pasting this into a new shell.py<\/code> file on the target machine, we can trigger the revshell by running the program on our target machine:<\/p>\n
python shell.py<\/pre>\n
And we catch it with EzPzShell immediately on our Kali attack machine!<\/p>\n
\n
\"\"<\/figure>\n<\/div>\n
FINAL THOUGHTS<\/h2>\n
\n
\"\"<\/figure>\n<\/div>\n
As you can see, EzPzShell is a versatile Python script for reverse shell payload creation and listener spawning. <\/p>\n
It seamlessly sets up our listener to catch the revshell using the file type of our choice from a long list of options. I\u2019ll be adding EzPzShell to my regular pen-testing toolkit and am confident that it will save me lots of time down the road in various CTF challenges and pentesting scenarios. <\/p>\n
Lookout for EzpzShell in future hacking tutorial videos.<\/p>\n
\"\ud83d\udc49\" Recommended<\/strong>: [TryHackMe] Skynet Walkthrough Using Remote File Inclusion<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"
5\/5 – (1 vote) EzpzShell = “Easy Peasy Shell” EzpzShell GitHub: https:\/\/github.com\/H0j3n\/EzpzShell WHAT IS EzpzShell? EzpzShell is a Python script that helps to streamline the revshell payload and listener creation process for ethical hackers, pentesters, and CTF gamers. There are many file types available, and it outputs several different payload options to choose from, letting […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[857],"tags":[73,468,528],"class_list":["post-131758","post","type-post","status-publish","format-standard","hentry","category-python-tut","tag-programming","tag-python","tag-tutorial"],"_links":{"self":[{"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/posts\/131758","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/comments?post=131758"}],"version-history":[{"count":0,"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/posts\/131758\/revisions"}],"wp:attachment":[{"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/media?parent=131758"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/categories?post=131758"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sickgaming.net\/blog\/wp-json\/wp\/v2\/tags?post=131758"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}