module

OS Command Exec, Unix Command Shell, Reverse TCP SSL (telnet)

Disclosed
N/A
Created
Jun 9, 2025

Description

Execute an OS command from PHP.

Creates an interactive shell via mkfifo and telnet.
This method works on Debian and other systems compiled
without /dev/tcp support. This module uses the '-z'
option included on some systems to encrypt using SSL.

Authors

Spencer McIntyre
RageLtMan rageltman@sempervictus

Platform

PHP

Architectures

php

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


msf > use payload/php/unix/cmd/reverse_bash_telnet_ssl
msf payload(reverse_bash_telnet_ssl) > show actions
...actions...
msf payload(reverse_bash_telnet_ssl) > set ACTION < action-name >
msf payload(reverse_bash_telnet_ssl) > show options
...show and set options...
msf payload(reverse_bash_telnet_ssl) > run

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.