Windows – NCAT SSL problem, certificate verification failed (self-signed certificate)

By Windows

I am currently trying to use ncat with SSL to bind cmd shell in Windows to allow Kali Linux computers to connect.

On Windows computers On the Kali Linux computer, I run

ncat –exec cmd.exe – Allow KaliLinux.computer -vnl PortNumber –ssl

On the Kali Linux computer, I then run

ncat -v Windows.computer PortNumber –ssl

Then I prompt on the Kali Linux terminal:

Ncat: Certificate verification failed (self-signed certificate).

However, I still welcome the Windows CMD output.

When trying to run any type of command through this ncat connection, no response is retrieved from the Windows computer, and viewing the CMD screen on the Windows computer shows that the connection is Closed without any warnings/errors.

If I try the same operation without the –ssl flag, the binding and connection will work as expected.

My query Yes, how to override the certificate verification failure notification or how to create a valid and secure SSL connection to make the connection valid?

Check whether the SSL version in Windows VM and Kali Linux are compatible. ncat 7.60 no longer supports tls 1.2

Another way is to use OpenSSL on Kali Linux instead of ncat (you can still use ncat in Windows VM).

For example. openssl s_client -connect 10.0.0.2:4444

I am currently trying to bind a cmd shell in Windows using ncat with SSL to allow Kali Linux computers to connect.

< /p>

On a Windows computer, I run

ncat –exec cmd.exe – Allow KaliLinux.computer -vnl PortNumber –ssl

On a Kali Linux computer, I Then run

ncat -v Windows.computer PortNumber –ssl

Then I prompt on the Kali Linux terminal:

Ncat: Certificate verification failed (self-signed certificate ).

However, I still welcome the Windows CMD output.

When trying to run any type of command through this ncat connection, no response is retrieved from the Windows computer, and the Viewing the CMD screen on a Windows computer shows that the connection is closed without any warnings/errors.

If I try the same operation without the –ssl flag, the binding and connection will work as expected.< /p>

My query is, how to override the certificate verification failure notification or how to create a valid and secure SSL connection to make the connection valid?

Check if the SSL version in Windows VM and Kali Linux are compatible. ncat 7.60 no longer supports tls 1.2.

Another One way is to use OpenSSL on Kali Linux instead of ncat (you can still use ncat in Windows VM).

e.g. openssl s_client -connect 10.0.0.2:4444

, , , , , , , ,

Leave a Comment

Your email address will not be published.