Netcat fun!

This instructable shows you how to create a backdoor on a computer with netcat! I will show you two ways to do this, with and without my batch file that automates it for you. This instructable already assumes that you have already got root permissions on the computer, probably with a 0phcrack LiveCD here. Now, onto the instructable.

Remove these ads by Signing Up

Step 1: Download netcat

I have saved you the trouble of 3 minutes of searching Google and have put nc.exe up on instructables for you to download. Optionally, you can also download nc.bat which is a batch file I have created to automate the process for you. Make sure that if you download nc.bat it is 464 bytes, because I kept on uploading versions and finding out something was wrong with it. If it is not 464 bytes, the program will not correspond with this instructable.

nc.exe60 KB

nc.bat464 bytes

locofocos says: Nov 24, 2007. 6:43 AM

Nice. I'm gonna go ahead and make an unnc.bat to undo it.

duct tape (author) in reply to locofocosNov 29, 2007. 7:03 PM

cool

locofocos in reply to duct tapeNov 30, 2007. 4:22 PM

Here's my idea. Go under your home router and enable forwarding of nc.exe on port 4444, then you could access the computer from any internet connection. I've got two computers, but my old laptop doesn't like our network, probably cause it has windows and linux on it.... If I look at all the computers on the network, it appears (when it's turned on and hooked up to the router), but not it's shared files (they are turned on to share, i'm not an idiot). If I try to see any other computers on the network from this computer, I can't see any. It's kinda like a one-way mirror. It can connect to the internet fine, but not the network. It's set up just like my desktop. Obviously, netcat won't work.

B.F.L.M in reply to locofocosJun 19, 2009. 6:50 PM

could you explain how to do that?

locofocos in reply to B.F.L.MJun 20, 2009. 9:56 AM

Before I tell you how to do it, let me go ahead and tell you that if you do it, ANYONE who has internet (millions of people) could log into your computer and control it, so I would REALLY recommend not doing it, even to someone else's computer. With that being said, you need to forward port 4444. Your router acts as a firewall that blocks people from connecting to you that shouldn't be. If you want to communicate with the outside world, you have to tell your router you want to "forward" that port. It will only forward it from the outside world to one IP address. Go check out http://portforward.com/routers.htm to help you do that.

duct tape (author) in reply to locofocosDec 13, 2009. 5:51 PM

you might want to set up some sort of login to the machine so that anonymous entry is harder. An IP logger would be another good addition.

duct tape (author) in reply to locofocosDec 7, 2007. 3:42 PM

that is strange. you went to whatismyip.org or something similar to find the IP address first, right?

locofocos in reply to duct tapeDec 7, 2007. 4:41 PM

Yeah. I'm not saying I've actually done it, but it should work.

duct tape (author) in reply to locofocosDec 7, 2007. 8:28 PM

paozie in reply to duct tapeApr 13, 2008. 4:54 PM

go to Start and click on run and then on cmd and type in IPconfig/all and then find your IP address. :D

duct tape (author) in reply to paozieApr 13, 2008. 5:08 PM

that only shows your network ip. to access it from the 'net you need the other one.

jund4 says: Dec 11, 2009. 6:15 PM

Hi can anyone tell how to use netcat on internet cuz i tried manytime but it didnt work.It works fine on lan network.so plz help.Thanks

duct tape (author) in reply to jund4Dec 13, 2009. 5:48 PM

You need to know the external IP address of the target computer, and then set up the router so that it forwards all requests on the port you are using to the target. It should then be accessible through the internet.

shoyru_master_11 says: Nov 5, 2009. 6:28 PM

GOOD

shoyru_master_11 says: Nov 5, 2009. 6:26 PM

I used regedit to put temporary COSMOKEY keys on not as harmful

shoyru_master_11 says: Nov 5, 2009. 6:25 PM

netcat error

NetDex says: Aug 9, 2009. 10:41 AM

My Anti virus (PC Tools) blocked it.

teh_noob says: Jul 30, 2009. 1:05 PM

http://www.securityfocus.com/cgi-bin/index.cgi?c=toolcomments&op=display_comments&ToolID=139&expand_all=true&mode=threaded

go there for netcat :D

teh_noob says: Jul 23, 2009. 4:43 PM

SUPER AWESOME 'IBLE!

pedro_33165 says: Jul 7, 2009. 8:02 AM

nc.exe is a .tmp file, my antivirus got rid of it. and nc.bat is a webpage.

admiral001 says: Feb 27, 2009. 1:14 PM

when I click on the files in this Instructable, it tries to download a tmp file.

hg341 in reply to admiral001May 8, 2009. 9:38 PM

tell it to save as "all files" then rename it "netcat.exe" or "putty.exe" it did that to me to^{are you useing ie8}

B.F.L.M in reply to hg341Jun 19, 2009. 6:43 PM

if you save it as netcat.exe, then nc.bat wont work(if you use it) you should save it as nc.exe

adaviel says: Feb 25, 2009. 12:15 AM

If you got here via google "download netcat", see the comments on "intro". nc.bat creates a backdoor on your computer if you run it.

rearthur2003 says: Jan 29, 2009. 12:44 AM

-d is for stealth which will make the program run in backgraound and -t is for telnet mode it allows other machine to telnet to it

Psychic Master says: Jan 3, 2009. 5:35 PM

im having trouble how do you use the window that pops up after you open PuTTY?

Psychic Master in reply to Psychic MasterJan 3, 2009. 5:38 PM

and about 15 sec after i open the window it says "connection timmed out"

wee_man says: Dec 17, 2008. 3:18 PM

Yea hi if i port forwarded port 4444 to a computer on my network could i remotely access it from a computer off my network?

duct tape (author) in reply to wee_manDec 20, 2008. 3:08 PM

Yes. But I'd put a password or something on it. You would also need a static ip or a domain name from dyndns.com. What I do sometimes is make my computer into a file server with HFS. Just google it and you will come up with an idea...

wee_man in reply to duct tapeDec 20, 2008. 8:24 PM

yea i have a doman name i auctly have game and webservers and all that stuff running on it umm with this is their a way i can add files like from remote computer > host ??

duct tape (author) in reply to wee_manDec 22, 2008. 9:26 PM

Of course! Please tell me more about your set-up.

tgfmk2 says: Dec 14, 2008. 1:52 PM

Rule no.0 never give away you ip adress on a site that teaches you how to hack

duct tape (author) in reply to tgfmk2Dec 14, 2008. 4:33 PM

This isn't the actual ip address - it is the network ip. It doesn't matter if someone knows this, unless they are on your network.

ItsLinaxD says: Nov 24, 2008. 1:57 PM

When I downloaded nc.exe it was a .tmp file, so it didn't work. :o

DavidRobertson says: Jul 4, 2007. 5:03 PM

Hey 192.168.1.103 is my ip address(or at least it seems so)

themasterpyro in reply to DavidRobertsonSep 21, 2007. 2:44 PM

i-am going to haaaaack youuuuuuu.

mikemmcmeans in reply to themasterpyroNov 17, 2008. 4:03 PM

ha you're not as smart as you try to be.
a "192.168.x.x" is the ip address behind his router. unless you also have the external ip (the one between your isp and you) , you cant do a single thing but hack your own router

duct tape (author) in reply to mikemmcmeansNov 19, 2008. 7:54 AM

I think he was making a joke...

MostlyHarmless in reply to themasterpyroSep 25, 2008. 6:10 PM

Even with someone's ip you can't easily or readily hack them, a number of measures are in place "out of the box" on nearly every computer used nowadays. Regardless of whether or not they have a firewall, hacking is not as simple as script kiddies would have you believe.

duct tape (author) in reply to MostlyHarmlessSep 30, 2008. 5:54 PM

i'm pretty sure that he was just joking.