Written by Mubassir patel


Python-pty backdoors – full PTY or nothing!

Insecurety Research (2013)

The following is a collection of bind and reverse shells which give you a fully working python-pty.

you can clone it from here.

This is far superior to a normal bind or reverse shell, as you have job control and an interactive python-pty and can do such things as use nano/vi to write files, su to elevate privs/change user, and ssh onward. You can also CTRL+C and suchlike.

I have implemented the bind and backconnect shells using the TCP protocol, the SCTP protocol, and the UDP protocol.

A demonstration video and blog post explaining the advantages/disadvantages of each technique is on the way, I just need to get around to it.

For the SCTP shell, you will need the PySCTP module and the host will need to support the SCTP protocol. Most modern Linux boxes do, however you may need to install lksctp and lksctp-dev to build the python extensions. I am unsure if pyinstaller or similar can get around this.

Released under the WTFPL –

Project by Insecurety Research –

Author: Darren ‘infodox’ Martyn.

About the author

Mubassir patel

Mubassir is a founder and developer of this site. He is a computer science engineer. He has a very deep interest in ethical hacking, penetration testing, website development and including all technology topic.

Leave a Comment