Skip to content

netscylla/gitshell

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits

GitShellAttacker

GitShellAttacker

 
 

GitShellVictim

GitShellVictim

 
 

images

images

 
 

.gitignore

.gitignore

 
 

GitShellVictim.sln

GitShellVictim.sln

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

gitshell

A PoC .net shell which uses a GitHub.com repository for the communication channel.

Gasp at it in action!

Showing a victim executing a shell and attacker executing commands:

ExampleShell

For more information on how it all hangs together please review the companion blog post from SecarmaLabs over here:

https://blog.secarma.co.uk/labs/git-shell-proof-of-concept

GitShellVictim

Clone down the repository and then open "GitShellVictim.sln" inside Visual Studio 2017. You can then read the source or compile the binary yourself.

There is a version of the binary in the "Debug" folder already. However, why would you trust that a hacker like me has given you the actual Binary? I mean, I did... But... Read the code and compile your own. Maybe you don't want all commits to your repository to be by @cornerpirate? You can fix that in the code if you want to.

GitShellAttacker

This folder contains the python script used on the attacker's side. This has only been tested on Kali and should work if you install the dependencies listed in Readme.md within this folder.

Disclaimer

This is for research purposes only. Do not use this in any situation where you are unauthorised to do so.

About

A PoC .net shell which uses a GitHub.com repository for the communication channel.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C# 70.3%
  • Python 29.7%