Skip to content

Relay Agent Bind SMB Listener

This relay listener does not open a new network socket - instead, it runs on the target machine where the generated payload is executed. An existing agent connection is used to set up an SMB named pipe to receive connections. To connect to this listener, an agent must use the connect-smb command with the target's host and the defined pipe name.

Plugin ID: shelldot.listener.relay-agent-bind-smb

Configuration Reference

Parameter Type Required Default Description
pipename string No - The name of the SMB pipe to use on the target.

Configuration Scenarios

Scenario 1 - Basic SMB Bind Relay

A relay listener using a named pipe for agent communication through SMB.

1
2
3
{
  "pipename": "tuoni"
}

Example (POST Request)

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
POST /api/v1/listeners HTTP/1.1
Authorization: Bearer {JWT_TOKEN}
Content-Type: application/json

{
  "plugin": "shelldot.listener.relay-agent-bind-smb",
  "name": "my-relay-smb-bind-listener",
  "configuration": {
    "pipename": "my-pipe"
  }
}