DET – Data Exfiltration Toolkit

DET is a proof of concept Data Exfiltration Toolkit using either single or multiple channel(s) at the same time.

The idea behind DET was to create a generic tool-kit to plug any kind of protocol/service to test implemented Network Monitoring and Data Leakage Prevention (DLP) solutions configurations, against different data exfiltration techniques.


DET already supports encryption and compression and also multiple protocols, listed here:

  • HTTP(S)
  • ICMP
  • DNS
  • SMTP/IMAP (eg. Gmail)
  • Raw TCP
  • PowerShell implementation (HTTP, DNS, ICMP, SMTP (used with Gmail))

And other “services”:

  • Google Docs (Unauthenticated)
  • Twitter (Direct Messages)

The following modules are “experimental”:

  • Skype (95% done)
  • Tor (80% done)
  • Github (30/40% done)



Clone the repo:


In the future the author hopes to add proper data obfuscation and other modules (FTP, Flickr using Steganography and YouTube).

Read more here.

Leave a Reply