Relay Agent Bind TCP Listener
This relay listener operates on the target machine where the payload is executed, rather than creating a socket on the C2 system. It configures a new agent to listen on a specified TCP port, allowing other agents to connect through that port using the "connect-tcp" command.
Plugin ID: shelldot.listener.relay-agent-bind-tcp
Configuration
The table below lists the required configuration parameter:
| Attribute | Description |
|---|---|
| port | TCP port on which the new agent will listen for connections |
Operation Overview
- New agent starts listening on the configured TCP port
- An existing agent connects using the "connect-tcp" command with:
- Target machine's IP address
- Configured port number
- Communication is routed through the connecting agent
Connection Flow
| Stage | Action |
|---|---|
| Setup | New agent listens on specified TCP port |
| Connect | Existing agent executes "connect-tcp" command |
| Relay | Communication flows through the connecting agent |
| Security | Adds layer of obfuscation through indirect communication |