I've a little question.
suppose someone (using windows XP) has running netcat as a listener:
nc -L -d -p 4644 -e cmd.exe
and, suppose I want a file on the c:\temp\ directory of this person,
how can I grab the file (I'm also using windows XP)
Printable View
I've a little question.
suppose someone (using windows XP) has running netcat as a listener:
nc -L -d -p 4644 -e cmd.exe
and, suppose I want a file on the c:\temp\ directory of this person,
how can I grab the file (I'm also using windows XP)
I've a little question.
suppose someone (using windows XP) has running netcat as a listener:
nc -L -d -p 4644 -e cmd.exe
and, suppose I want a file on the c:\temp\ directory of this person,
how can I grab the file (I'm also using windows XP)
The only thing I can think of is to do a "net share" cmd. Share the temp dir on the remote computer. Then run a net use "drive letter" "pathname". Once this is done, you might(and I mean might) be able to access this new drive. Just hopefully this remote computer has port 135 and 139 open.
I might be completely wrong with what I said above, if someone can, correct me.
The only thing I can think of is to do a "net share" cmd. Share the temp dir on the remote computer. Then run a net use "drive letter" "pathname". Once this is done, you might(and I mean might) be able to access this new drive. Just hopefully this remote computer has port 135 and 139 open.
I might be completely wrong with what I said above, if someone can, correct me.
nc -vv <address> 4644 or telnet <address> 4644
after you get a cmd shell just ftp the file you want to an ftp server and get it from there:
C:\>cd temp
C:\temp>ftp <address>
User (<address>:(none)):anonymous
Password: [email protected]
ftp>put <file>
ftp>bye
C:\temp>exit
it dosn't matter what os your using your shell is on the nc servers machine
nc -vv <address> 4644 or telnet <address> 4644
after you get a cmd shell just ftp the file you want to an ftp server and get it from there:
C:\>cd temp
C:\temp>ftp <address>
User (<address>:(none)):anonymous
Password: [email protected]
ftp>put <file>
ftp>bye
C:\temp>exit
it dosn't matter what os your using your shell is on the nc servers machine
this site might help..
even lists a way to transfer files..
http://www.sans.org/rr/audit/netcat.php
this site might help..
even lists a way to transfer files..
http://www.sans.org/rr/audit/netcat.php
thanks, you were all very helpfull,especially tedob1.
Is it btw also possible to ftp files from my computer to his computer (again: knowing that the
only thing a have is a netcat-listener on his computer).
greetz
thanks, you were all very helpfull,especially tedob1.
Is it btw also possible to ftp files from my computer to his computer (again: knowing that the
only thing a have is a netcat-listener on his computer).
greetz
André id like to add that this is one of the most dangerous thing you can do as far as your friends machine is concerned. there is no security at all here and anyone that telnets to that port to find out whats running will find themselves with a command shell. if this is to be an on going thing and not just an experiment get and install realVNC on his machine. its free and gives you password encryption. the client is only 172k or you can use a browser to access his machine on port 5900. pcanywhere would be better but its not free. even telnet would be better than netcat. At least set the firewall to only allow connections from your ip address.
he's using cryptcat, that's a more secure version of netcat (uses encryption),
and the listener listens actually at port 80, so, i don't think that he'll be hacked so soon...
but maybe you're right. I'll tell him to take a firewall, and only allow my adress..
greetz
Cryptcat encrypts the session, doesn't password protect it, and port 80 is a very high traffic port, it's one of those that is sure to be scanned, for your friends protection, I wouldn't recommend using that port. I would recommend a high numbered port that only your system has access to.
PuRe
you really should at least consider VNC with a FW configured to allow just your address. you transfer files the same way using ftp but its a fully graphical interface in that you have controll of the desktop. not as much fun but allot more secure.
maybe you're right.
I'll do the file transfers with ftp now.
PS: does annyone knows where I can find a stupid-proof guide "how to install your own ftp server" ???
thanks.
chacl ur inboxQuote:
Originally posted here by André
maybe you're right.
I'll do the file transfers with ftp now.
PS: does annyone knows where I can find a stupid-proof guide "how to install your own ftp server" ???
thanks.