CC - Covert Client =================== AUTHOR: ithilgore VERSION: 1.0 LICENCE: GPL 3 Compilation ----------- gcc cc.c -o cc Usage ------ ./cc -d -s -p -f -v where : the destination host running a covert server or just tcpdump host : your ip or a spoofed one if you are not waiting to receive any data : fairly obvious : the file containing the actual data you want to send Sample ------ $cat test HELLO #./cc -d 10.0.0.50 -s 10.0.0.30 -f test -p40 Sending Data: H Sending Data: E Sending Data: L Sending Data: L Sending Data: O #tcpdump -X host 10.0.0.50 and port 40 tcpdump: verbose output suppressed, use -v or -vv for full protocol decode listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes 07:49:05.729226 IP 10.0.0.30.8402 > 10.0.0.50.40: S 1207959552:1207959552(0) win 512 0x0000: 4500 0028 2ecf 0000 4006 37b2 0a00 001e E..(....@.7..... 0x0010: 0a00 0032 20d2 0028 4800 0000 0000 0000 ...2...(H....... 0x0020: 5002 0200 3099 0000 P...0... 07:49:06.729251 IP 10.0.0.30.3944 > 10.0.0.50.40: S 1157627904:1157627904(0) win 512 0x0000: 4500 0028 2ed0 0000 4006 37b1 0a00 001e E..(....@.7..... 0x0010: 0a00 0032 0f68 0028 4500 0000 0000 0000 ...2.h.(E....... 0x0020: 5002 0200 4503 0000 P...E... 07:49:07.729329 IP 10.0.0.30.7831 > 10.0.0.50.40: S 1275068416:1275068416(0) win 512 0x0000: 4500 0028 2ed1 0000 4006 37b0 0a00 001e E..(....@.7..... 0x0010: 0a00 0032 1e97 0028 4c00 0000 0000 0000 ...2...(L....... 0x0020: 5002 0200 2ed4 0000 P....... 07:49:08.729411 IP 10.0.0.30.7985 > 10.0.0.50.40: S 1275068416:1275068416(0) win 512 0x0000: 4500 0028 2ed2 0000 4006 37af 0a00 001e E..(....@.7..... 0x0010: 0a00 0032 1f31 0028 4c00 0000 0000 0000 ...2.1.(L....... 0x0020: 5002 0200 2e3a 0000 P....:.. 07:49:09.729496 IP 10.0.0.30.9117 > 10.0.0.50.40: S 1325400064:1325400064(0) win 512 0x0000: 4500 0028 2ed3 0000 4006 37ae 0a00 001e E..(....@.7..... 0x0010: 0a00 0032 239d 0028 4f00 0000 0000 0000 ...2#..(O....... 0x0020: 5002 0200 26ce 0000 P...&...