penelope icon indicating copy to clipboard operation
penelope copied to clipboard
verified publisher icon brightio

[Feature] specify an IP for setting up the reverse shell when needed

Open r3pek opened this issue 2 months ago • 3 comments

Sometimes penelope tries to open a second shell to upgrade the shell to a proper one. the thing is that the interface might be behind a PNAT for example (or a cloud machine) and the interface penelope get's the connection from doesn't have the "right" ip for the reverse shell to work. I suggest adding a new flag where you can setup the "public ip" that penelope uses in this situations

r3pek avatar Oct 30 '25 22:10 r3pek

Hi @r3pek,

Have you been in this situation? Penelope uses the same IP and port to open the second shell so if you managed to get the initial shell, then secondary shell will can reach the listener.

brightio avatar Oct 30 '25 23:10 brightio

Yeah I was (just now).

When for example you have a cloud vps, the ip on the interface is a private on (10.0.0.0/8) but there is a public ip routed to that vps, but Penelope doesn't know about that one 😅🤷‍♂️

You could also have a port forward setup on your router to get a port to your pc and get a reverse shell from the internet for example. Again, the auto bash reverse shell won't work because it doesn't know the correct ip (or the port for that matter, but that it's easily fixable)

r3pek avatar Oct 31 '25 00:10 r3pek

Got it, thanks for reporting this!

brightio avatar Oct 31 '25 00:10 brightio