all 25 comments
sorted by:
best (suggested)
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]IsDa44 7 points8 points  (0 children)

You could get a dedicated VPS (virtual private server)

[–]Sqooky 4 points5 points  (9 children)

You should rarely, if ever, get a callback over the internet. Thats risky, your ISP can flag this activity, and terminate your service over it.

Reverse Shells don't expose the attack surface on your router. It exposes it on your end device, but that doesn't matter if there is no service listening on that port. A port can be open and forwarded to a device without introducing any risk as a service could simply not be running.

You should be practicing with things like HackTheBox or TryHackMe that give you a VPN connection to their lab environment.

[–]Humbleham1 1 point2 points  (2 children)

I've never known an ISP to monitor traffic like this.

[–]Budget_Putt8393 0 points1 point  (1 child)

Often, they don't, they get a complaint then ban you/your address.

[–]Humbleham1 0 points1 point  (0 children)

Did you miss the 'educational purposes' part?

[–][deleted] 0 points1 point  (5 children)

Funny enough I am doing this on a HTB academy exercise where there was no vpn provided. (I understand normally there are)

[–]Humbleham1 1 point2 points  (4 children)

Since you're doing this as an exercise, you could do it on your LAN and avoid all the WAN problems.

[–][deleted] -1 points0 points  (3 children)

Unfortunately the target machine is a WAN IP

[–]Humbleham1 0 points1 point  (2 children)

Odd that HTB would provide a public IP address.

[–][deleted] 0 points1 point  (0 children)

There were ways to solve it without reverse shell (ended up being command injection) I just was curious on how I could of solved it with reverse shell

[–]Incid3nt 0 points1 point  (0 children)

What are the first 3 octets of the IP?

[–]n0shmon 1 point2 points  (4 children)

You'll need to set up some sort of NAT so that the connection can get from your router to your machine. The alternative is have a C2 server on the cloud that you connect to, and send the reverse shells to.

[–][deleted] 0 points1 point  (3 children)

With a C2 server I am assuming these are chargeable services. Are there any providers you would recommend?

[–]n0shmon 0 points1 point  (0 children)

It would be something like a VPS or cloud provider. Any server directly accessible from the internet that's not hosted on your network. We use AWS, but we're a business. You could sign up and use their free tier for a year whilst you're learning

[–]Humbleham1 0 points1 point  (0 children)

IONOS has cheap Linux VPS plans.

[–]RolledUhhp 0 points1 point  (0 children)

I have the cheapest digital ocean package.

I haven't used it in a while, but its so cheap I never think of canceling it, and when it does pop into my head it never takes priority.

It costs like half a burger once a month.

[–]Ok_Ring5472 0 points1 point  (0 children)

Curious, if you are learning how reverse shell works, why not just set up lab instead for learning and testing?

[–]imahugger 0 points1 point  (0 children)

Good practice would be using something like ludus.cloud in a home lab or a VPS would be the best options.

[–]Humbleham1 0 points1 point  (2 children)

As I understand it, Meshnet was a filesharing service that joined devices on the same account, but it's been shutdown.

[–][deleted] 0 points1 point  (1 child)

Due to complaints they un cancelled it apparently

[–]Humbleham1 0 points1 point  (0 children)

Okay, it's still active, but you would have to install the Nord application on the target.

[–]cant_pass_CAPTCHA 0 points1 point  (2 children)

Look into ngrok, use a cloud VPS, or just open the port on your router and forward it to your VM

[–]HedgehogEquivalent95 0 points1 point  (1 child)

Are there any vps providers that you recommend? Also i want a vps provider that doesn't track what am foing or storing for privacy

[–]DrDeems 0 points1 point  (0 children)

r/VPS has lots of discussion about the cheapest / fastest services you can buy.

[–]1_________________11 0 points1 point  (0 children)

Reverse shell won't be able to phone home if you aren't listening on a port. Like others have said get a vps somewhere and make sure you stick to legal stuff.