No shell ?

[SmailDH]

Hi Team, Could anyone advise why i am receiving the connection back when try with netcat but nothing happening when i start the listener ?

[t3l3machus]

@SmailDH it looks like the cmd payload you used with cme is using https, but the hoaxshell server was not started with -c and -p, used to provide certificate and private key files to start the listener via https. Maybe if you change protocol=https to protocol=http in the payload, it will actually work.

Another suggestion is to use Villain, which has the hoaxshell listener built-in and can also generate payloads (like the cmd-curl you are using) quickly, among other things.

hope it helps!

[SmailDH]

Thank you @t3l3machus , Yes it did work with "http" but doesn't look it handle the display very well, i will try to use the Villain as suggested :) , possibly python stuff

[t3l3machus]

@SmailDH please let me know if you had the same issue with villain.

[SmailDH]

@SmailDH please let me know if you had the same issue with villain.

I will do , thank you!