If David used his skills in a bad way, there would be some massive problems to his targets, love your content David! Hope you see this!

Create your own virtual machine on Linode with 60-day $100 credit* davidbombal.wiki/linode * Please note: Credits expire in 60 days. Errata The promo code mentioned in the video is incorrect - you need to use the link above to automatically add credit. * Thanks to Linode for sponsoring this video! // MENU // 0:00 ▶ Introduction 1:05 ▶ Network Topology 3:40 ▶ Method 1: Easy Method 5:09 ▶ OMG Cable 8:00 ▶ Method 2 // STEPS and INSTRUCTIONS // Download this PDF for detailed instructions: www.dropbox.com/s/5ai8ex6rkif4bql/OMG%20Reverse%20shell%20updated%20v3.pdf?dl=0 // SOCIAL // Discord: discord.com/invite/usKSyzb Twitter: twitter.com/davidbombal Instagram: instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal KZbin: kzbin.info // MY STUFF // Monitor: amzn.to/3yyF74Y More stuff: www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com Disclaimer: This video is for educational purposes only. I own all equipment used for this demonstration. No actual attack took place on any websites. Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

I love watching these tutorials because it helps me be more informed about threats and how to protect myself and my family and business, so thank you for always providing such informative videos! Theoretically, could this be modified so that the payload connects over the TOR network to a TOR hidden service?

-Great content Professor David. -Basically the device connected to the PC opens a session to the server where we send the commands that return to the host where the session was opened. -Similarly when people download infected files they turn their PCs unknowingly into a Nod (Soldier PC) in a future botnet attack that is common today. -Or have your data stolen your PC for example. -Always good to be very careful with what we download, run or connect to our PCs. -Thank you very much for the knowledge Professor David Bombal...!!!

Really clear tutorial - step by step - so we can follow alone - thank you for your time and effort best wishes for 2022

Hi David thanks again for this education. I just wanted to tell you that because of your education i want to be part of the youtubers in IT so i'm working currently on video's inspired by your hard work. Every video i wil mention you as my primal motivation :) Happy new year!

as someone who is wants to be a network and system admin/engineer your hacking videos have been very helpful

You are way cooler than the bears coffee dude teaching hacking. 🔥🔥🔥

I like how clean this video is and how good it is genrally, than you and have a great new year!

Happy New Year David! Cool Channel I’m retired but learning as a hobby and keep the mind sharp. Your Always informative and interesting! Stay cool. 😎

Great tutorial David!

Advance Happy new year david bombal 😊😊😊

Just want to say aside firm the knowledge I really appreciate the video production. Keep up the good work.

Great stuff clearly explained, as usual. Hope you are well David.

You the best David, I'm gonna try it in my lab right now, this is really cool :)

I really like these videos, thanks David.

Every video of Yours is Gem 💎💎💎 More Power to #DavidBombal From Kashmir

homie stays on that 11 and shits dope

Thanks David great video

Love the content! But how did you get around the amsi in powershell to run the IWR one-liner command on the target machine?

That's interesting.. Best way to end this year.. Cheers!

Your all video's are very good and very informative keep it up David and happy new year

SICK INTRO AND VID! Btw can you make some priv esc videos, I’ve been wondering about that for a long time

wow David, this is awesome!

I have a question, in method 2 that you taught, the target machine needs to execute the script for you to gain access to it, or is it not necessary for it to execute?, because if you think about it that way you could only use this way to physically apply the code to target machine

You have great tutorial videos👍…Happy New Year 🎉

I love this guy. He seems very kind but he could ruin someone's life if he really wanted to.

Awesome content! Thanks for the video, David !! Advance new year wishes !!

big respect Mr.bombal and tank you a lot

Great but OMG has an issue with different computer hardware . You have to know what is the proper delays based on it. In other words script might not execute properly. And the most important nothing will execute if it is user account. But as always love the videos. Great job! Love your videos! You really boost up my knowledge and made me research and learn, try and test.

Great video as always David! Also I figured out a way to make this work with realtime protection on 😉

Really Informative Sir!

A video on VPS would be great !

Amazing work!!! thanks for making the video

Educational video thanks for the video love it❤

thank you very much,are there types of reverse shell that could penetrate windows with memory integrity enabled? Does this memory integrity protect from remote code execution?

Yeah. Windows defender has gotten a lot better. Even if you try to run a command to disable real time monitoring the tamper protection won't let you run that command. And I don't think there is any way to disable the tamper protection with a command or any shortcut

Good evening sir ❤️❤️❤️❤️❤️❤️❤️ love this video

Hello, thanks alot for your great content. Easy to understand and always interesting topics. But what i dont understand: what does the script i.e. Invoke-ConPtyShell.ps1 with the computer? do i have to remove a file or will it be removed after restart when i have finished an attack and wanna clean the computer?

very nice as always ! thank you.

Excellent Tutorial, thank you very much for this great content 👍🏻👍🏻👍🏻

It is a great tutorial. Thanks a lot. I have a question about one line. stty raw -echo (stty size; cat)| nc ... I know the commands before the pipe are used to equalize both terminals. But why the use of "cat" in this context?

Thankyou David

Thank You Sir, Thank You so Much. I don't know how I say you to Thanks. Your Lectures guide me as well as inspired me. Again Thank You Sir.

I smill every time he use the rick roll, I imagine that he sits at 80 years old and still provide rick rolls via hacks :D

Hey David ur video are just inspiring

Great explication and great video again. My request is a video about to steal active directory hashes downloading SAM and then access to A.D. It would be usefull to hardening A.D. Regards

thank you for the great tutorial

Thank you M.s David

the trick here is to find a way (typically through phishing) to drop the payload that will run the script on the victim machine

That's great video am from Ethiopia 🇪🇹

Hello there sir David, May I ask who were the lucky winners of your raffles before?

Very good video. I have one question tho. Why we running the netcat on a webserver instead of using your machine (Kali Linux)

Thank you for your great content. Serious Question: If we do that on our own devices, for educational purposes only, do we run the risk of the VPS provider blocking us ? Can you answer please? Thanks :-) Also, a video on VPS hosting please? Great fan here!

LOVE YOUR VIDS!

Also sir I have a tiny suggestion. after this series could you start one on cybersecurity and cryptography?

Still using win 10 But video is Awesome

David, that precious PDF takes like forever⏳ to load 😅

Thanks for your efforts

You are one of my icons in the world of Networking and Cybersecurity Mr. Bombal, sending you and your family all the best wishes and good prayers and love from Kolkata West Bengal India, Happy Christmas and a very very happy new year to you and your family in advance, God bless all, also hope you launch and introduce lots of awesome free courses along with free certificates of completion related to Networking, Servers, Cybersecurity, IT Security , Cloud Security etc in the new year for everyone around the world who can't afford to pay for the high priced and costly paid vendor based certifications

Tbh I don't see a big difference from doing reverse shell on Windows 11 or any other Windows version or even OS ... I mean the "hack" is not related to Windows 11... Except only that one additional setting - to turn off a security...

Nice video. Does this type of attack only work on windows or does it work on mac and linux as well?

Awesome video Sir...

The Windows 11 isolation core and memory integrity protect against this type of attacks? And if i got filtrated ports, router with firewall, nat, antivirus and PC firewall?

Nice video!

How can I upgrade the shell to meterpreter. The shell to meterpreter module isn't working.

Can you please make a video of all cmd hacks that we can do instead of wifi networks ??

will make udemy course for oscp exams preparation....

I like this vid.. Good insight.

I block all outbound, with the limited exception of 443. Will this work on 443?

david is that possible to do that same hack with usb rubber ducky on cloud ? i mean what i have to do is to configured webserver on cloud using Linode or digital-ocean and configure netcat and a web server on cloud (Linode) as shown in your video and then attached that rubber ducky device to the victim computer to execute the script of disabling and then executing the ps1 script for revershell?

All time the best 🙂

Netcat listener : you are trash Multi handler: I am you. 😂

"Be careful opening pdfs"......."ive created a tutorial that you can download, a pdf" :D

Love your videos David! One thing that stinks about real-time protection is it will prevent you from downloading some security tools. You have to be sure to turn it back on lol

Can you make a video for how prevent / stop hacker for reverse shell attack on Windows? Thanks in advance

Do you need linode server, or can you use a Wi-Fi adapter to get an IP address

Hey David but how can we execute backdoor to keep this session always open ? Can you make a video on it

anyone else getting the following error message Unexpected token '80' in expression or statement. At line:5 char:12 + $sendback=(iex $data | Out-String );

sir can we remotely turn the 'real time protection' off??

Thank you

Wicked info

Cheers! THKX #DavidBombal

How does your script execute in powershell without administrator permissions?

Hi David I tried executing the method 2 multiple times, but it dint work. Could you please let me know what could be the reason ?

Hi , can you show some features of SET ( Social Engineering Toolkit ) in a video ?

If a person doesn’t disable real time protection, and doesn’t click on another document/email/link etc, then both of these methods won’t work for a computer you don’t have physical access to. Correct?

From , India Delhi

David make for me a tutorial on Hak5 Lan Turtle please. when you have access to the network, what are the steps you have to follow to get access to other machines connected to the same network. please David i really beg you

can you do a video about socket programming ?

Amazing 👏

so professor David if i obfuscate the payload and use netcat will its still detected

Every version of windows has been full of security holes, but some versions much more so than others.

This won’t work if power shell is lock down and real part time protection is enabled you would have to be administrator and what’s the point if you already have administrative privileges I imagine that’s why a lot of ducky payloads don’t work anymore this is all predicated on access to the power shell.

Great video but sadly reverse shell don't work anymore these days... physical access is key

Amazing 😍

Awesome & amazing

The python simple web server is showing an 200 http response status code, but on the netcat command, when I type commands like dir, it does not work. Any ideas why David? Thanks in advance

Nice video,

love it