File Transfer

After we have “built“ an exploit locally on our attacking machine, we still have to transfer it to the target system. Here, we will discover that in fact many roads lead to Rome, and we are going to show three example procedures:

1. The Swiss Army Knife netcat is once again the forerunner for file transfers. Here, we only have to read the input from our desired file on the client side and divert the output into a file on the server side. Using our attacker scenario, this would work as follows:

Attacker

nc -q0 ${target server} ${target port} < ${file}

Target system

nc -l -p ${local port} > ${file}

2. Aside from netcat, we could also use the secure shell protocol SSH, which requires us to have a user with ssh access for our target system. Indeed, we rarely run into this situation in practice, but we have nevertheless learned about the password usage of users. If the above condition applies, we can transfer a file to the target system via the secure copy protocol (scp):

 scp ${file} ${user}@${target system}:${filing location}

3. A more creative solution would be to launch a web server on our attacker machine, place the file in its DocumentRoot and access it from the target system, using wget or curl, for example.

Section Navigation

binsec academy GmbH – Advanced Pentest Training Lab

binsec academy GmbH operates the Pentest Training Lab, a highly practical online platform dedicated to real penetration testing. Simulating complex corporate networks and advanced real-world attack scenarios within isolated lab environments, it is engineered to sharpen the skills of aspiring and professional penetration testers. Upon conquering our rigorous, fully practical examination, participants earn the distinguished Binsec Academy Certified Pentest Professional (BACPP) designation — proving their technical capability to methodically uncover and evaluate vulnerabilities in modern IT infrastructures.

Explore the Pentest Training Lab

binsec GmbH – Experts in Penetration Testing

binsec GmbH is a highly specialized penetration testing provider and the operative pentesting core of the binsec group. Since 2013, the company has focused exclusively on high-end, human-led penetration tests (pentests) and advanced red team simulations. Rejecting automated scans, our team of permanently employed, certified senior pentest experts delivers manual deep-dive assessments of critical digital systems: from web applications and APIs to mobile apps, complex network infrastructures, and cloud environments. As a dedicated assessment partner for highly regulated sectors such as Payment, Banking, and Healthcare, binsec GmbH provides clear risk evaluations and actionable reports to effectively secure business-critical systems.

Get Manual Expert Penetration Testing Services

Contact

binsec GmbH
Clemensstraße 6-8
60487 Frankfurt am Main
Germany

M

info@binsec.com

T

+49 69 2475607-0

Legal notice

Director: Patrick Sauer
Authorized Officer: Dominik Sauer, Florian Zavatzki
Registration: Frankfurt am Main, HRB97277
Turnover Tax Identification No.: DE290966808

© 2026 All rights reserved by binsec GmbH. The operative core enterprise of the binsec group.

Privacy Notice

© 2026 All rights reserved by binsec GmbH. The operative core enterprise of the binsec group.

Privacy Notice