c137exfil

module

v0.0.0-...-589b3b4 Latest Latest Go to latest Published: Mar 10, 2020 License: GPL-3.0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/slyth11907/c137exfil

Links

Open Source Insights

README ¶

C137Exfil

Exfiltration Script that identifies traffic between hops out of the network using a custom TCP implementation.

Using a Secret Value on compile time the data and packets will be suffled

TCP Packets will use a different combination of flags, data offsets and settings
Internal Packet structure will have a different secret Start of File & End of File marker
AES encryption key will be unique
Custom retransmission packet will be different

Exfil will check and monitor traffic between one hop to another to determine the best protocol to use and build a custom wrapper around that specific protocol.

There are 3 modes.

Entry Point
Forwarder
End Point

Entry point will load the data into memory and batch it over based on the identified protocol. There is a custom retransmission happening and will ensure all data is transfered.

Forwarder is used to move the data through the network. Each forwarder can use a different protocol based on what is allowed through the firewall as well as what is working best currently.

The End Point can be used to push data out of the network via different exfil situations.

High Level: Image description

Internal: Image description

Directories ¶

Path	Synopsis
C137ExfilSource

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL