Saturday, June 17, 2017

DET – Data Exfiltration Toolkit

8:05 AM Leave a Reply
DET – Data Exfiltration Toolkit
DET is a proof of concept Data Exfiltration Toolkit using either single or multiple channel(s) at the same time.
DET - Data Exfiltration Toolkit
The idea behind DET was to create a generic tool-kit to plug any kind of protocol/service to test implemented Network Monitoring and Data Leakage Prevention (DLP) solutions configurations, against different data exfiltration techniques.

Features

DET already supports encryption and compression and also multiple protocols, listed here:
  • HTTP(S)
  • ICMP
  • DNS
  • SMTP/IMAP (eg. Gmail)
  • Raw TCP
  • PowerShell implementation (HTTP, DNS, ICMP, SMTP (used with Gmail))
And other “services”:
  • Google Docs (Unauthenticated)
  • Twitter (Direct Messages)

The following modules are “experimental”:
  • Skype (95% done)
  • Tor (80% done)
  • Github (30/40% done)

Usage

Installation

Clone the repo:
Then:
In the future the author hopes to add proper data obfuscation and other modules (FTP, Flickr using Steganography and YouTube).