GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → ekiojp → dfex

ekiojp / dfex

Licence: MIT License
DNS File EXfiltration

Programming Languages

python
139335 projects - #7 most used programming language

Labels

dnsfilepost-exploitationexfiltration

Projects that are alternatives of or similar to dfex

dnsfilexfer
File transfer via DNS
Stars: ✭ 51 (+10.87%)
Mutual labels:  dns, exfiltration
Gtfobins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
Stars: ✭ 6,030 (+13008.7%)
Mutual labels:  post-exploitation, exfiltration
gtfo
Search for Unix binaries that can be exploited to bypass system security restrictions.
Stars: ✭ 88 (+91.3%)
Mutual labels:  post-exploitation, exfiltration
Pyexfil
A Python Package for Data Exfiltration
Stars: ✭ 554 (+1104.35%)
Mutual labels:  dns, post-exploitation
log4shell-tools
Tool that runs a test to check whether one of your applications is affected by the recent vulnerabilities in log4j: CVE-2021-44228 and CVE-2021-45046
Stars: ✭ 55 (+19.57%)
Mutual labels:  dns
fuckwinfsdel
Solve Windows can't delete long paths file's bug.
Stars: ✭ 24 (-47.83%)
Mutual labels:  file
fresh.py
An efficient multi-threaded DNS resolver validator
Stars: ✭ 80 (+73.91%)
Mutual labels:  dns
get-trust-anchor
Tool for fetching/refreshing DNS Root Zone trust anchors
Stars: ✭ 57 (+23.91%)
Mutual labels:  dns
black-mirror
Automatically maintained malicious host blacklists and false-positive whitelists.
Stars: ✭ 41 (-10.87%)
Mutual labels:  dns
solvere
A validating recursive DNS resolver library and standalone server with DNSSEC support
Stars: ✭ 32 (-30.43%)
Mutual labels:  dns
Windows.10.DNS.Block.List
Windows DNS Block List
Stars: ✭ 18 (-60.87%)
Mutual labels:  dns
powerdns-php
PowerDNS API PHP Client
Stars: ✭ 67 (+45.65%)
Mutual labels:  dns
AdbNet
A tool that allows you to search for vulnerable android devices across the world and exploit them.
Stars: ✭ 112 (+143.48%)
Mutual labels:  post-exploitation
Dns
The Hoa\Dns library.
Stars: ✭ 22 (-52.17%)
Mutual labels:  dns
python-dyndnsc
dynamic dns (dyndns) update client with support for multiple protocols
Stars: ✭ 36 (-21.74%)
Mutual labels:  dns
Alfis
Alternative Free Identity System
Stars: ✭ 162 (+252.17%)
Mutual labels:  dns
certexfil
Exfiltration based on custom X509 certificates
Stars: ✭ 18 (-60.87%)
Mutual labels:  exfiltration
Secure-Adblocking-DNS
Secure (DNS-over-TLS) Adblocking (Pi-hole) Recursive (unbound) Server System setup
Stars: ✭ 19 (-58.7%)
Mutual labels:  dns
humansize
Humansize - A flexible crate for humanizing file sizes
Stars: ✭ 32 (-30.43%)
Mutual labels:  file
ssrf-agent
make http(s) request to prevent SSRF
Stars: ✭ 16 (-65.22%)
Mutual labels:  dns
View All Similar Projects ➔

logo

DNS File EXfiltration

Data exfiltration is a common technique used for post-exploitation, DNS is one of the most common protocols through firewalls. We take the opportunity to build a unique protocol for transferring files across the network.

Existing tools have some limitations and NG Firewalls are getting a bit "smarter", we have been obliged to explore new combinations of tactics to bypass these. Using the good old fashion "HIPS" (Hidden In Plain Sigh) tricks to push files out

Installation

Client

apt-get install -y virtualenv python3 python3-pip git
git clone https://github.com/secdev/scapy
cd scapy
sudo python setup.py install && cd .. && sudo rm -rf scapy

virtualenv -p python3 dfex-client
cd dfex-client
source ./bin/activate

git clone https://github.com/ekiojp/dfex
cd dfex
pip3 -r requirements_client.txt install

Server

apt-get install -y virtualenv python3 python3-pip git
git clone https://github.com/secdev/scapy
cd scapy
sudo python setup.py install && cd .. && sudo rm -rf scapy

virtualenv -p python3 dfex-server
cd dfex-server
source ./bin/activate

git clone https://github.com/ekiojp/dfex
cd dfex
pip3 -r requirements_server.txt install

Usage

Client

Server

Presentations

Video

HITB GSEC (Aug 2019)

Slides

BSides Tokyo (Oct 2019)
HITB GSEC (Aug 2019) or HITB GSEC (Aug 2019)

ToDo

  • DDFEX - Distributed DNS File Exfiltration
  • Make the code nicer

Disclaimer

The tool is provided for educational, research or testing purposes.
Using this tool against network/systems without prior permission is illegal.
The author is not liable for any damages from misuse of this tool, techniques or code.

Author

Emilio / @ekio_jp

Licence

Please see LICENSE.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].