 Here is another demo of my file container spreadsheet, which allows you to store any extractor arbitrary files. And this time for the infiltration and exfiltration, we are going to use a website. The website that we will use is Wikipedia. Several years ago I made a blog post about how you could store information, any information that you want, into Wikipedia. And that's what I'm going to use here. Now you can do this on any page in Wikipedia, but I'm going to do this on my sandbox. I'm logged in here and here is my sandbox. So it appears to be empty. Now if you go into the history, you see that there have been some changes. And let me take this previous version. And now here you can see that there appears to be hexadecimal data. So I'm going to take this. So let me edit the page. I'm going to copy this like this. So copy this. And I'm going to drop this in my spreadsheet. So let's call this file 001. And here paste this. So now I have this file stored here in my spreadsheet. You see list files, it appears here. Now this file here, which is an executable, was not stored as is in hexadecimal form in Wikipedia. But I also encoded it with an XOR key. And file container now supports XOR key encoding. So the key that I used is dj. And now I'm going to save this executable. So I select it. Save files. And here in the demo directory, let me save this. And now it is decoded with this dj key from the data that is here in this file. And then save to disk. Like this. And you can see that it is a valid executable that you can execute. Now that was infiltration. So let me remove this. And now we are going to do exfiltration with another key. Let's call this secret. So let's come back to the sandbox. Like this. And now I want to exfiltrate a file. So let's add it here. So this is the file I want to exfiltrate. Okay, so now I have here a sheet in the spreadsheet that contains this file encoded. So now I could save this spreadsheet and then mail it out. But I don't want to do that. I want to use Wikipedia. So let's copy this. Like this. Go back to Wikipedia. Now remark also that I work with HTTPS. So the data being sent to Wikipedia and received from Wikipedia is encrypted. So let me edit the sandbox and drop this in and save it. Okay, and here you have it. It's in Wikipedia and now we are also going to hide it. So let's go to the history and say here undo. Okay, that's what I wanted to undo. Like this. Okay, and so now it no longer appears here in my sandbox. But if I go into the history, I can still find the exfiltrated data back.