Brosec: interactive reference tool to utilize useful payloads & commands

Brosec is a terminal based reference utility designed to help us infosec bros and broettes with useful (yet sometimes complex) payloads and commands that are often used during work as infosec practitioners. An example of one of Brosec’s most popular use cases is the ability to generate on the fly reverse shells (python, Perl, powershell, etc) that get copied to the clipboard.

Assuming the user has already set up the required variables a reverse shell using the awk command can be generated as easy as…


Or maybe you need to remotely invoke a Powershell script? A download cradle can be generated like so.


Additional Features and Usage Examples
Bros http(s)

Need a quick web server? Forget python SimpleHTTPServer, bros has your back with bros http when entered via the command line. An SSL server? bros https has you covered.

###### [Bros FTP]( Need to exfiltrate some data via ftp? Bros come with a handy `bros ftp` when entered via the command line. The ftp server accepts anonymous downloads/uploads from the CWD (so be careful when running).

Bros Encode

An encoder/decoder utility designed with penetration testers in mind that often find the need to encode and decode various payloads.

Learn about these features and more on the Brosec wiki.


The preferred method of installation (in order to get all of the latest updates) is to clone the source and install the dependencies manually (git clone && npm install).

However, a stable build can be quickly installed via the following instructions.


Quick Installation

Kali Linux

  •   apt-get install npm build-essential g++ xsel Install dependencies
  • npm install -g n Install n (nodejs version manager)
    • If the above fails, try – npm config set registry
  • n latest Install the latest version of nodejs
  • npm install -g Brosec


  • Install nodejs via official installer
  • npm install -g Brosec


Brosec is a terminal based reference utility