BSD Command Shell, Find Port Inline - Metasploit

This page contains detailed information about how to use the payload/bsd/x86/shell_find_port metasploit module. For list of all metasploit modules, visit the Metasploit Module Library.

Module Overview

---

Name: BSD Command Shell, Find Port Inline
Module: payload/bsd/x86/shell_find_port
Source code: modules/payloads/singles/bsd/x86/shell_find_port.rb
Disclosure date: -
Last modification time: 2021-01-05 14:59:46 +0000
Supported architecture(s): x86
Supported platform(s): BSD
Target service / protocol: -
Target network port(s): -
List of CVEs: -

Spawn a shell on an established connection

Module Ranking and Traits

---

Module Ranking:

• normal: The exploit is otherwise reliable, but depends on a specific version and can't (or doesn't) reliably autodetect. More information about ranking can be found here.

Basic Usage

---

msf > use payload/bsd/x86/shell_find_port
msf payload(shell_find_port) > show options
    ... show and set options ...
msf payload(shell_find_port) > generate

To learn how to generate payload/bsd/x86/shell_find_port with msfvenom, please read this.

Go back to menu.

Msfconsole Usage

---

Here is how the bsd/x86/shell_find_port payload looks in the msfconsole:

msf6 > use payload/bsd/x86/shell_find_port

msf6 payload(bsd/x86/shell_find_port) > show info

       Name: BSD Command Shell, Find Port Inline
     Module: payload/bsd/x86/shell_find_port
   Platform: BSD
       Arch: x86
Needs Admin: No
 Total size: 60
       Rank: Normal

Provided by:
  Ramon de C Valle <[email protected]>

Basic options:
Name   Current Setting  Required  Description
----   ---------------  --------  -----------
CPORT  12436            no        The local client port

Description:
  Spawn a shell on an established connection

Module Options

---

This is a complete list of options available in the bsd/x86/shell_find_port payload:

msf6 payload(bsd/x86/shell_find_port) > show options

Module options (payload/bsd/x86/shell_find_port):

   Name   Current Setting  Required  Description
   ----   ---------------  --------  -----------
   CPORT  12436            no        The local client port

Advanced Options

---

Here is a complete list of advanced options supported by the bsd/x86/shell_find_port payload:

msf6 payload(bsd/x86/shell_find_port) > show advanced

Module advanced options (payload/bsd/x86/shell_find_port):

   Name                        Current Setting  Required  Description
   ----                        ---------------  --------  -----------
   AppendExit                  false            no        Append a stub that executes the exit(0) system call
   AutoRunScript                                no        A script to run automatically on session creation.
   AutoVerifySession           true             yes       Automatically verify and drop invalid sessions
   CommandShellCleanupCommand                   no        A command to run before the session is closed
   CreateSession               true             no        Create a new session for every successful login
   InitialAutoRunScript                         no        An initial script to run on session creation (before AutoRunScript)
   PrependSetgid               false            no        Prepend a stub that executes the setgid(0) system call
   PrependSetregid             false            no        Prepend a stub that executes the setregid(0, 0) system call
   PrependSetresgid            false            no        Prepend a stub that executes the setresgid(0, 0, 0) system call
   PrependSetresuid            false            no        Prepend a stub that executes the setresuid(0, 0, 0) system call
   PrependSetreuid             false            no        Prepend a stub that executes the setreuid(0, 0) system call
   PrependSetuid               false            no        Prepend a stub that executes the setuid(0) system call
   VERBOSE                     false            no        Enable detailed status messages
   WORKSPACE                                    no        Specify the workspace for this module

Go back to menu.

Related Pull Requests

---

• #14584 Merged Pull Request: Implement the zeitwerk autoloader within lib/msf/base
• #14202 Merged Pull Request: Implement the zeitwerk autoloader within lib/msf/core
• #9960 Merged Pull Request: fix continuation warnings in payloads
• #8716 Merged Pull Request: Print_Status -> Print_Good (And OCD bits 'n bobs)
• #8338 Merged Pull Request: Fix msf/core and self.class msftidy warnings
• #6655 Merged Pull Request: use MetasploitModule as a class name
• #5129 Merged Pull Request: Implement x64 BSD exec, exe templates, and prepend stubs
• #4894 Merged Pull Request: Implement payload size caching, speeding up framework loads
• #2525 Merged Pull Request: Change module boilerplate
• #1241 Merged Pull Request: Removed all $Id$ and $Revision$ occurences

Go back to menu.

See Also

---

Check also the following modules related to this module:

• payload/bsd/sparc/shell_bind_tcp
• payload/bsd/sparc/shell_reverse_tcp
• payload/bsd/vax/shell_reverse_tcp
• payload/bsd/x64/exec
• payload/bsd/x64/shell_bind_ipv6_tcp
• payload/bsd/x64/shell_bind_tcp
• payload/bsd/x64/shell_bind_tcp_small
• payload/bsd/x64/shell_reverse_ipv6_tcp
• payload/bsd/x64/shell_reverse_tcp
• payload/bsd/x64/shell_reverse_tcp_small
• payload/bsd/x86/exec
• payload/bsd/x86/metsvc_bind_tcp
• payload/bsd/x86/metsvc_reverse_tcp
• payload/bsd/x86/shell/bind_ipv6_tcp
• payload/bsd/x86/shell/bind_tcp
• payload/bsd/x86/shell_bind_tcp
• payload/bsd/x86/shell_bind_tcp_ipv6
• payload/bsd/x86/shell/find_tag
• payload/bsd/x86/shell_find_tag
• payload/bsd/x86/shell/reverse_ipv6_tcp
• payload/bsd/x86/shell/reverse_tcp
• payload/bsd/x86/shell_reverse_tcp
• payload/bsd/x86/shell_reverse_tcp_ipv6
• exploit/bsd/finger/morris_fingerd_bof
• post/bsd/gather/hashdump

Authors

---

Ramon de C Valle

Version

---

This page has been produced using Metasploit Framework version 6.1.24-dev. For more modules, visit the Metasploit Module Library.

Go back to menu.