
       Name: Command Shell, Android Reverse HTTPS Stager
     Module: payload/android/shell/reverse_https
   Platform: Android
       Arch: dalvik
Needs Admin: N
Evasion options for payload/android/shell/reverse_https:
=========================

sploit.com>
    anwarelmakrahy
    OJ Reeves

Basic options:
Name   Current Setting  Required  Description
----   ---------------  --------  -----------
LHOST                   yes       The local listener hostname
LPORT  8443             yes       The local listener port
LURI                    no        The HTTP Path

Description:
    Spawn a piped command shell (sh).

    Tunnel communication over HTTPS


    Name                        Current Setting                                                                                                                     Required  Description
    ----                        ---------------                                                                                                                     --------  -----------
    AndroidHideAppIcon          false                                                                                                                               no        Hide the application icon automatically after launch
    AndroidMeterpreterDebug     false                                                                                                                               no        Run the payload in debug mode, with logging enabled
    AndroidWakelock             true                                                                                                                                no        Acquire a wakelock before starting the payload
    AutoRunScript                                                                                                                                                   no        A script to run automatically on session creation.
    AutoVerifySession           true                                                                                                                                yes       Automatically verify and drop invalid sessions
    CommandShellCleanupCommand                                                                                                                                      no        A command to run before the session is closed
    EnableStageEncoding         false                                                                                                                               no        Encode the second stage payload
    HandlerSSLCert                                                                                                                                                  no        Path to a SSL certificate in unified PEM format
    HttpCookie                                                                                                                                                      no        An optional value to use for the Cookie HTTP header
    HttpHostHeader                                                                                                                                                  no        An optional value to use for the Host HTTP header
    HttpReferer                                                                                                                                                     no        An optional value to use for the Referer HTTP header
    HttpServerName              Apache                                                                                                                              no        The server header that the handler will send in response to requests
    HttpUnknownRequestResponse  <html><body><h1>It works!</h1></body></html>                                                                                        no        The returned HTML response body when the handler receives a request that is not from a payload
    HttpUserAgent               Mozilla/5.0 (iPad; CPU OS 17_7_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4.1 Mobile/15E148 Safari/604.1  no        The user-agent that the payload should use for communication Max parameter length: 255 characters
    IgnoreUnknownPayloads       false                                                                                                                               no        Whether to drop connections from payloads using unknown UUIDs
    InitialAutoRunScript                                                                                                                                            no        An initial script to run on session creation (before AutoRunScript)
    OverrideLHOST                                                                                                                                                   no        When OverrideRequestHost is set, use this value as the host name for secondary requests
    OverrideLPORT                                                                                                                                                   no        When OverrideRequestHost is set, use this value as the port number for secondary requests
    OverrideRequestHost         false                                                                                                                               no        Forces a specific host and port instead of using what the client requests, defaults to LHOST:LPORT
    OverrideScheme                                                                                                                                                  no        When OverrideRequestHost is set, use this value as the scheme for secondary requests, e.g http or https
    PayloadUUIDName                                                                                                                                                 no        A human-friendly name to reference this unique payload (requires tracking)
    PayloadUUIDRaw                                                                                                                                                  no        A hex string representing the raw 8-byte PUID value for the UUID
    PayloadUUIDSeed                                                                                                                                                 no        A string to use when generating the payload UUID (deterministic)
    PayloadUUIDTracking         false                                                                                                                               yes       Whether or not to automatically register generated UUIDs
    PingbackRetries             0                                                                                                                                   yes       How many additional successful pingbacks
    PingbackSleep               30                                                                                                                                  yes       Time (in seconds) to sleep between pingbacks
    ReverseAllowProxy           false                                                                                                                               yes       Allow reverse tcp even with Proxies specified. Connect back will NOT go through proxy but directly to LHOST
    ReverseListenerBindAddress                                                                                                                                      no        The specific IP address to bind to on the local system
    ReverseListenerBindPort                                                                                                                                         no        The port to bind to on the local system if different from LPORT
    ReverseListenerComm                                                                                                                                             no        The specific communication channel to use for this listener
    SSLVersion                  Auto                                                                                                                                yes       Specify the version of SSL/TLS to be used (Auto, TLS and SSL23 are auto-negotiate) (Accepted: Auto, TLS, SSL23, SSL3, TLS1, TLS1.1, TLS1.2)
    StageEncoder                                                                                                                                                    no        Encoder to use if EnableStageEncoding is set
    StageEncoderSaveRegisters                                                                                                                                       no        Additional registers to preserve in the staged payload if EnableStageEncoding is set
    StageEncodingFallback       true                                                                                                                                no        Fallback to no encoding if the selected StageEncoder is not compatible
    StagerVerifySSLCert         false                                                                                                                               no        Whether to verify the SSL certificate in Meterpreter
    VERBOSE                     false                                                                                                                               no        Enable detailed status messages
    WORKSPACE                                                                                                                                                       no        Specify the workspace for this module

