Names | NCAT | |
Category | Tools | |
Type | Backdoor, Downloader, Exfiltration | |
Description | (Mandiant) NCAT is a command-line networking utility that was written for the nmap Project to perform a wide-variety of security and administration tasks. While NCAT may be used for legitimate purposes, threat actors may also use it to upload or download files, create backdoors or reverse shells, and tunnel traffic to evade network controls. | |
Information | <https://www.mandiant.com/resources/blog/china-nexus-espionage-southeast-asia> |
Last change to this tool card: 27 December 2022
Download this tool card in JSON format
Previous: nbtstat
Next: NcFTPPut
Changed | Name | Country | Observed | ||
APT groups | |||||
UNC4191 | 2022 |
1 group listed (1 APT, 0 other, 0 unknown)
Digital Service Security Center Follow us on |
Report incidents |
|
+66 (0)2-123-1227 | ||
[email protected] |