Chashell: Go reverse shell that communicates over DNS
Reverse Shell over DNS
It comes with a multi-client control server, name chaser.
Chashell communicates using Protocol Buffers serialized messages. For reference, the Protocol Buffers structure (.proto file) is available in the proto folder.
Here is a (simplified) communication chart :
Keep in mind that every packet is encrypted, hex-encoded and then packed for DNS transportation.
Chashell should work with any desktop system (Windows, Linux, Darwin, BSD variants) that is supported by the Go compiler.
Author: Nicolas Chatelain <n.chatelain -at- sysdream.com>