blog/content/posts/commits/2026-03-01-commit-0cd3d6c.md

title, date, draft, tags, categories, summary, author

title	date	draft	tags	categories	summary	author
[bojemoi] uzi: shell→meterpreter upgrade + fix Telegram chat_id	2026-03-01T13:31:20+01:00	false	commit bojemoi main	Git Activity	Commit 0cd3d6c par Betty dans bojemoi	Betty

Commit 0cd3d6c

Repository	bojemoi
Branch	main
Author	Betty
Hash	0cd3d6c5380737493f70bf353ed97fb2005fc1c6

Description

• Add upgrade_to_meterpreter(): injects msfvenom ELF stager via base64 into shell sessions, connects bind_tcp handler — no LHOST/reverse routing needed
• Add handle_new_sessions(): auto-upgrades new shell sessions, deduplicates via upgraded_sessions set, then sends Telegram alert
• Fix port conflict: kill stale stager on bind_port before injection (fuser -k)
• Fix read_secret(): env var now takes priority over Docker secret file, allowing TELEGRAM_ALERT_CHAT_ID override without recreating shared secrets
• Stack: add BIND_PORT=5556, PYTHONUNBUFFERED=1, TELEGRAM_ALERT_CHAT_ID=-5087117106

Co-Authored-By: Claude Sonnet 4.6 noreply@anthropic.com

Files Changed

M	borodino/thearm_uzi
M	stack/40-service-borodino.yml

Diff Summary

 borodino/thearm_uzi           | 123 ++++++++++++++++++++++++++++++++++++++++--
 stack/40-service-borodino.yml |   3 ++
 2 files changed, 121 insertions(+), 5 deletions(-)