🛣️ Scenario

client gives you a remote desktop and asks you to exfiltrate data

🧠 Learning Objectives

✔️ Asses firewall settings

✔️ Leverage insufficiently secure firewall settings

✔️ Encrypt interesting data and exfiltrate them using DNS

✔️ Automatically identify all possible exfiltration ways

🧰 Tools

• Kali
• Packet Whisperer
• Wireshark
• rdesktop
• Egress Framework

🙍🏻 Network Configuration & Credentials

subnet: 172.16.91.0/24

machine IP: 172.16.91.100

connection type: RDP

#rdesktop 172.16.91.100

Credentials:

username: AdminELS

password: Nu3pmkfyX

📝Tasks