See how to use the enhanced Cachetalk tool for reading and writing HTTPS bits in this video.
- [Narrator] Let's find a server…which, in it's normal operation,…allows for signaling.…We can do this with the CovertPi version of CacheTalk.…Let's check the metasploitable server…using the tools test mode.…We can see that this site isn't viable…as the response indicates that the metasploitable website…doesn't have its cache expiry set.…This is not unusual.…In fact, finding a site which has a usable cache control set…can be challenging.…
Cashtalk works by making a normal…and legitimate call to a website.…It's just reading the webpage…the way it's intended to be read.…What CacheTalk does is to check the normal response we get…for the timestamp,…and deduce from this…the bit that's being exfultratred.…Let's test another site.…We'll pick a less frequently visited page on the site…so we don't have any interference.…
We can see that CacheTalk tells us…that this is viable.…When we run this check a couple more times,…we see the expiry date is the same…and the time to the next cash refresh is reducing…by the amount of time it took us to reissue the command.…
- How tunneling works
- Running a local SSH tunnel
- Dynamic SSH tunneling
- Pivoting with Armitage and Metaspoit
- Exfiltrating using DET and DNS
- Covert exfiltration with Cachetalk
- Using PyExfil to exfiltrate over HTTPS
Skill Level Advanced
Ethical Hacking: Penetration Testingwith Lisa Bock1h 20m Intermediate
Penetration Testing Essential Trainingwith Malcolm Shore2h 29m Intermediate
Penetration Testing: Advanced Kali Linuxwith Malcolm Shore2h 22m Intermediate
1. Preparing the Lab
Next steps1m 38s
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.