CastleCops, Internet Crime Fighters
Need help? Click here to register for free! Absolutely zero advertisements on this site!

$9736.22 of $21422.68
left sidedonated so farneed $11686.46 donated to reach our goalright side, our goal
Help CastleCops serve the community on new servers, Donate Here to reach our goal.

Donation/Premium
spacer
Donations. Become Premium Today! Premium Icon
block bottom
Security Central
spacer
· Home
· PIRT/Fried Phish
· MIRT
· SIRT
· Deutsch
· Wiki
· Newsletter
· O16/ActiveX
· CLSID List
· Contest2007
· Downloads
· Feedback (send)
· Forums
· HijackThis
· Hijacktrend
· LSPs
· My Downloads
· O18
· O20
· O21
· O22
· O23
· O9
· Premium
· Private Messages
· Proxomitron
· Reviews
· Search
· StartupList
· Stories Archive
· Submit News
· WsIRT
· Your Account
· Acceptable Use Policy
block bottom
Survey
spacer
Was 2007 a good year?

Yes it was a wonderful year
Yes, but there is always room for improvement
Status quo
It was a challenge
Other (leave comment)



Results
Polls

Votes: 952
Comments: 28
block bottom
spacer spacer
image Downloads: Komahayown, Inverse Connection Remote Shell image
Cyber Security
Komahayown is a shellcode and client for remote execution of commands through an inverse connection (using random ports using the TCP protocol).

Such an inverse channel is needed because in most cases a Firewall will block incoming ports to a server, but will be a lot less restrictive on outgoing connections. By creating such an inverse channel, an attacker can cause the shellcode to run commands (by sending a simple ICMP packet), and send back the response via an unrestricted TCP port.

A diagram illustrating the mechanism can be viewed by going to: http://www.shellcode.com.ar/st0xff/kmh_wflow.jpg

The tool can be downloaded from: http://www.shellcode.com.ar/en/proyectos.html
The information has been provided by Matias Sedalo.

Source: Securiteam
Posted on Wednesday, 11 June 2003 @ 09:35:41 UTC by Paul (1765 reads)
[ Trackback ]		image

"Downloads: Komahayown, Inverse Connection Remote Shell" | Login/Create an Account | 0 comments
Threshold
The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register
 
Login
spacer
Nickname

Password

Security Code: Type Security Code: Usage signifies AUP acceptance
· New User? · Click here to create a registered account.
block bottom
Related Links
spacer
· del.icio.us!
· digg it!
· reddit!
· TrackBack (0)
· HotScripts
· W3 Consortium
· More about Cyber Security
· News by Paul

Most read story about Cyber Security:
Booby Trapped software!
block bottom
Article Rating
spacer
Average Score: 0
Votes: 0

Please take a second and vote for this article:

Bad
Regular
Good
Very Good
Excellent
block bottom
Options
spacer

Printer Friendly Page  Printer Friendly Page
block bottom
2002-2008 © Computer Cops LLC dba CastleCops®. All rights reserved.
Acceptable Use Policy. Use signifies your agreement.
147ppm 0.133s (0.007s)
Making cybercriminals unhappy since 2002*
In Memory of Trpm
spacer spacer