Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/phrozenio/sharpshellpipe

This lightweight C# demo application showcases interactive remote shell access via named pipes and the SMB protocol.
https://github.com/phrozenio/sharpshellpipe

adversary-simulation csharp infosec namedpipe namedpipes offensive-security redteam remote-control remote-shell shell smb

Last synced: about 3 hours ago
JSON representation

This lightweight C# demo application showcases interactive remote shell access via named pipes and the SMB protocol.

Host: GitHub
URL: https://github.com/phrozenio/sharpshellpipe
Owner: PhrozenIO
License: apache-2.0
Created: 2023-08-25T15:18:30.000Z (about 1 year ago)
Default Branch: main
Last Pushed: 2023-11-09T10:36:23.000Z (about 1 year ago)
Last Synced: 2024-05-02T02:55:18.182Z (7 months ago)
Topics: adversary-simulation, csharp, infosec, namedpipe, namedpipes, offensive-security, redteam, remote-control, remote-shell, shell, smb
Language: C#
Homepage: https://www.phrozen.io
Size: 1.11 MB
Stars: 110
Watchers: 1
Forks: 14
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# SharpShellPipe

## Project Description

![Image](Assets/image.png)

This lightweight C# application serves as a demonstration of how simple it is to interactively access a remote system's shell via named pipes using the SMB protocol. It includes an optional encryption layer leveraging AES GCM, utilizing a shared passphrase between both the server and the client. If you're interested in an example that employs both AES GCM and RSA for additional security, consider checking out another one of my projects, [SharpFtpC2](https://github.com/DarkCoderSc/SharpFtpC2). Implementing that security layer into this project would also be relatively straightforward.

Exercise caution if you decide to use this project in a production environment; it was not designed for such use. Proceed at your own risk. The primary aim of this project is to illustrate a well-known network evasion detection technique that will soon be featured on the [Unprotect Project](https://unprotect.it/) website.

## Usage

### Server

`SharpShellPipe.exe`

This is the computer you wish to access to.

### Client

`SharpShellPipe.exe --client`

You will be prompted to enter the name of the computer you wish to connect to the one hosting the **SharpShellPipe** Server. To connect to the local machine, you can either enter `.` or simply press the Enter key.