关于反弹shell的事情。

vvgary

第一：为什么我检测的pppoe的结果跟大家的不一样的呢？这是什么情况？


接口地址:192.168.31.177
Waiting for packets
检测到PPPOE数据包,请返回解锁工具窗口按y继续
Client->Server   |   Discovery Initiation
Server->Client   |   Discovery Offer
Traceback (most recent call last):
  File "redmi\PPPoE_Simulator.py", line 193, in <module>
    sniff(prn=packet_callback, iface=iface, filter="pppoed or pppoes", lfilter=isNotOutgoing)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\sendrecv.py", line 972, in sniff
    sniffer._run(*args, **kwargs)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\sendrecv.py", line 925, in _run
    session.on_packet_received(p)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\sessions.py", line 47, in on_packet_received
    result = self.prn(pkt)
  File "redmi\PPPoE_Simulator.py", line 73, in packet_callback
    PPPoETag(tag_type=Host_Uniq, tag_value=host_uniq))
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\sendrecv.py", line 338, in sendp
    realtime=realtime, return_packets=return_packets)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\sendrecv.py", line 291, in __gen_send
    s.send(p)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\arch\pcapdnet.py", line 343, in send
    sx = raw(x)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\compat.py", line 52, in raw
    return bytes(x)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 487, in __bytes__
    return self.build()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 607, in build
    p = self.do_build()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 592, in do_build
    pay = self.do_build_payload()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 579, in do_build_payload
    return self.payload.do_build()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 592, in do_build
    pay = self.do_build_payload()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 579, in do_build_payload
    return self.payload.do_build()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 592, in do_build
    pay = self.do_build_payload()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 579, in do_build_payload
    return self.payload.do_build()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 592, in do_build
    pay = self.do_build_payload()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 579, in do_build_payload
    return self.payload.do_build()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 592, in do_build
    pay = self.do_build_payload()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 579, in do_build_payload
    return self.payload.do_build()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 589, in do_build
    pkt = self.self_build()
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\packet.py", line 570, in self_build
    p = f.addfield(self, p, val)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\fields.py", line 140, in addfield
    return s + struct.pack(self.fmt, self.i2m(pkt, val))
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\fields.py", line 1380, in i2m
    f = fld.i2len(pkt, fval)
  File "C:\Users\KaHoTang\Desktop\rm2100\lib\site-packages\scapy\fields.py", line 938, in i2len
    return len(x)
TypeError: object of type 'NoneType' has no len()
请按任意键继续. . .





然后就是去到反弹那里一直卡在那没有下文了。
我救过一次砖。不知道有没有关系。
求大神帮忙

涯北

你小米系统是不是2.0.7版本，是的话降级到1.0.14版本

6720

如果是卡反弹shell，试一下把路由器ip改成192.168.31.1。我上次就是这样刷的。因为固定ip与路由器ip不一样，导致卡在反弹那里。