Unusual firewall bypassing techniques, network and computer security.

0100100101110100 011101110110000101110011 011000010110110001101100 01110110011001010111001001111001 01110111011001010110110001101100 0111010001101111 011100110110000101111001 011000000100010001110010011010010110111001101011 01101101011001010010110000100111 011000100111010101110100 011101000110100001100101 01110111011010010111001101100101 011011000110100101110100011101000110110001100101 0100000101101100011010010110001101100101 011101110110000101110011 011011100110111101110100 0110011101101111011010010110111001100111 0111010001101111 0110010001101111

Lewis Carroll "Alice In Wonderland"
Chinese French Russian Spanish Polish Italian
Home | Projects | Papers | Forum | Team | Links | Contributions

Wsh, "Web Shell" - remote UNIX/WIN shell, that works via HTTP/HTTPS. The package contains two perl scripts for server and client hosts, one C source code and one Java servlet code for the server host : the client script is for console usage and the server scripts run as CGI/Servlet scripts on the target host.

The client part provides shell-like prompt, encapsulating user commands into HTTP POST requests and sending them to the server part script on the target web server directly or via HTTP proxy server. The server part extracts and executes commands from HTTP post requests and returns STDOUT and STDERR output as HTTP response messages. By default both scripts encode HTTP data with Xor.

The key Web Shell features: SSL support (*), Command line history support (*), File upload/download, Protect server part script usage with secret key inside HTTP message, Data flow Xor encoding, Can work trough HTTP proxy server.

(*) - Additional packages are required on the client host.

Alex Dyatlov, Simon Castro
Current Wsh version: 2.2.2; README , CHANGELOG
Download | md5sum: 4b7f51d186b65bd16e304b507b96613c

Index of projects

MsnShell - is a kind of covert channel tunneling tool allowing to remotely control a Linux computer through the use of the MSN protocol.
[learn more]

Team member's sites: hhworld/ The Hitchhiker's World e-zine

GNU  GNU General Public License
 GNU Free Documentation License