Penelope is a modern shell handler for penetration testers and CTF players. It provides a more capable alternative to basic netcat listeners, adding automatic PTY upgrades, session management, logging, file transfers and helper modules.
Penelope runs on Unix-like systems, including Linux, macOS and FreeBSD, and requires Python 3.6+.
Penelope is available in Kali Linux:
sudo apt update
sudo apt install penelope
Penelope is implemented entirely with Python’s standard library, allowing it to run as a standalone script without any external dependencies:
wget -q https://raw.githubusercontent.com/brightio/penelope/refs/heads/main/penelope.py && python3 penelope.py
To install the latest upstream version directly from GitHub:
pipx install git+https://github.com/brightio/penelope
For a versioned and more stable release path, Penelope is also available on PyPI:
pipx install penelope-shell-handler
| Feature | Unix-like target | Windows target |
|---|---|---|
| Auto-upgrade shell | PTY | readline(*) |
| Real-time terminal resize | ✅ | ❌ |
| Logging shell activity | ✅ | ✅ |
| Download remote files/folders | ✅ | ✅ |
| Upload local/HTTP files/folders | ✅ | ✅ |
| In-memory local/HTTP script execution with real-time output downloading | ✅ | ❌ |
| Local port forwarding | ✅ | ❌ |
| Spawn shells on multiple tabs and/or hosts | ✅ | ❌ |
| Auto-maintain N active shells per host (re-spawn on death) | ✅ | ❌ |
(*) Can be manually upgraded to PTY with the upgrade command
⚠️ Windows support is experimental and under active development.
set DisablePayloadHandler Truepenelope # Listening for reverse shells on 0.0.0.0:4444
penelope -p 5555 # Listening for reverse shells on 0.0.0.0:5555
penelope -p 4444,5555 # Listening for reverse shells on 0.0.0.0:4444 and 0.0.0.0:5555
penelope -i eth0 -p 5555 # Listening for reverse shells on eth0:5555
penelope -a # Listening for reverse shells on 0.0.0.0:4444 and show sample reverse shell payloads
penelope -c target -p 3333 # Connect to a bind shell on target:3333
penelope ssh user@target # Get a reverse shell from target on local port 4444
penelope -p 5555 ssh user@target # Get a reverse shell from target on local port 5555
penelope -i eth0 -p 5555 -- ssh -l user -p 2222 target # Get a reverse shell from target on eth0, local port 5555 (use -- if ssh needs switches)
penelope -s <File/Folder> # Share a file or folder via HTTP
As shown in the video below, within only a few seconds we can: 1. Get a fully functional auto-resizable PTY shell while logging every interaction with the target 2. Execute the latest version of LinPEAS on the target without touching the disk and save the output to a local file in real time 3. Open one more PTY shell in another tab 4. Upload the latest versions of LinPEAS and linux-smart-enumeration 5. Upload a local folder with custom scripts 6. Upload an exploit-db exploit directly from URL 7. Download and open a remote file locally 8. Download the remote /etc directory 9. Automatically spawn a new shell if an existing shell dies, helping keep access available during unstable shell sessions
https://github.com/brightio/penelope/assets/65655412/7295da32-28e2-4c92-971f-09423eeff178
Some Notes:
- By default you need to press F12 to detach the PTY shell and go to the Main Menu. If the upgrade was not possible and you ended up with a basic shell, you can detach it with Ctrl+C. This also prevents the accidental killing of the shell.
- The Main Menu supports TAB completion and also short commands. For example instead of interact 1 you can just type i 1.
positional arguments:
args Arguments for -s/--serve and SSH reverse shell modes
options:
-p, --ports PORTS Ports (comma separated) to listen/connect/serve, depending on -i/-c/-s options
(Default: 4444/5555/8000)
Reverse or Bind shell?:
-i, --interface Local interface/IP to listen. (Default: 0.0.0.0)
-c, --connect Bind shell Host
-j, --jump Reverse shell jump endpoints
Hints:
-a, --payloads Show sample reverse shell payloads for active Listeners
-l, --interfaces List available network interfaces
-h, --help show this help message and exit
Session Logging:
-L, --no-log Disable session log files
-T, --no-timestamps Disable timestamps in logs
-CT, --no-colored-timestamps Disable colored timestamps in logs
Misc:
-M, --menu Start in the Main Menu
-m, --maintain Keep N sessions per target
-S, --single-session Accommodate only the first created session
-ms, --max-sessions Max active sessions per host (default 5)
-C, --no-attach Do not auto-attach on new sessions
-U, --no-upgrade Disable shell auto-upgrade
-O, --oscp-safe Enable OSCP-safe mode
File server:
-s, --serve Run HTTP file server mode
-prefix, --url-prefix URL path prefix
Debug:
-N, --no-bins Simulate missing binaries on target (comma-separated)
-v, --version Print version and exit
-d, --debug Enable debug output
-dd, --dev-mode Enable developer mode
-cu, --check-urls Check hardcoded URLs health and exit
cat may look corrupted. Filtering these escape sequences is planned to make log output smoother.Penelope’s core shell-handling features do not perform automatic exploitation, which makes them suitable for OSCP-style usage. However, exam rules can change, so always verify the current official OffSec rules before using any tool during an exam.
Some modules require extra caution:
If you want to avoid accidental rule violations, use the -O / --oscp-safe switch.
It depends on the type of shell upgrade in use:
* PTY: press F12
* Readline: send EOF (Ctrl-D)
* Raw: send SIGINT (Ctrl-C)
In any case, the correct key is always displayed when you attach to a session. For example:
See peneloperc
This usually means you opened a new interactive shell, possibly under a different user. The Penelope agent only tracks the directory of the initial shell and keeps the permissions of the user from that first shell. The best workaround is to cd /tmp before opening a new shell, or, if you switched users, spawn a new reverse shell as the new user.
Your contributions are invaluable! If you’d like to help, please report bugs, unexpected behaviors, or share new ideas. You can also submit pull requests but avoid making commits from IDEs that enforce PEP8 and unintentionally restructure the entire codebase.
Penelope was the wife of Odysseus and is known for her loyalty and patience while waiting for him to return. The tool is named after her because it was built to be a faithful and stable shell handler for workflows that go beyond a basic listener.
$ claude mcp add penelope \
-- python -m otcore.mcp_server <graph>