Viral Maniar

Viral Maniar

InfoSec

Internal Infrastructure Pentest - Socks Tunnel

less than 1 minute read

SOCKS 5 proxy tunnel:
- ssh -D 1337 -f -C -q -N user@victimip.com
  - D: Tells SSH that we want a SOCKS tunnel on the specified port number (only ports between 1025-65536 are supported)
  - f: Forks the process to the background
  - C: Compresses the data before sending it
  - q: Uses quiet mode
  - N: Tells SSH that no command will be sent once the tunnel is up
- Verify that the tunnel is up and running with this command:
- ps aux grep ssh
- Configuring Firefox to Use the Tunnel:
- set the SOCKS host as ‘localhost’ on the attacker machine
- set the port numer to 1337
- Browse the internal application from the victim’s network on an attacker machine through Firefox

Share on

Twitter Facebook LinkedIn

You may also enjoy

Destroying Cloud Infrastructure with Nuking Tools - LAPSUS$ Case Study

13 minute read

Installing Kali in AWS EC2 Instance

less than 1 minute read

sudo passwd kali sudo apt-get update sudo apt-get install xrdp lxde-core lxde tigervnc-standalone-server -y cd / sudo sed -i ‘s/allowed_users=.*/a...

Brace Yourself: Cyber Attacks on Australian Businesses Set to Skyrocket

2 minute read

Brace Yourself: Cyber Attacks on Australian Businesses Set to Skyrocket

The Power of In-Memory Executions: How to Execute Code without Touching Disk

6 minute read

In-memory execution is a technique used by malware developers to evade detection by traditional antivirus solutions. Instead of writing their malicious code ...