DNS Egress

Well here's a handy trick. We often find in post-exploitation that it can be difficult to egress data. This is especially true in environments where egress filtering is enabled and a host only allows connections over basic ports like 53/DNS.

I came across this trick the other day which I thought was just brilliant. Credit to Ben Clark and his RTFM guide which is getting rave reviews on Amazon for this snippet.

How's that for elegant? When I'm not using srvdir for exfil this will be another trick in my back pocket.