Viral Maniar

Viral Maniar

InfoSec

Internal Infrastructure Pentest - Socks Tunnel

less than 1 minute read

SOCKS 5 proxy tunnel:
- ssh -D 1337 -f -C -q -N user@victimip.com
  - D: Tells SSH that we want a SOCKS tunnel on the specified port number (only ports between 1025-65536 are supported)
  - f: Forks the process to the background
  - C: Compresses the data before sending it
  - q: Uses quiet mode
  - N: Tells SSH that no command will be sent once the tunnel is up
- Verify that the tunnel is up and running with this command:
- ps aux grep ssh
- Configuring Firefox to Use the Tunnel:
- set the SOCKS host as ‘localhost’ on the attacker machine
- set the port numer to 1337
- Browse the internal application from the victim’s network on an attacker machine through Firefox

Share on

Twitter Facebook LinkedIn

You may also enjoy

Destroying Cloud Infrastructure with Nuking Tools

4 minute read

Cloud computing has become the backbone of countless businesses, ensuring the security of cloud infrastructure is of utmost importance. Misconfigurations, un...

Installing Kali in AWS EC2 Instance

less than 1 minute read

sudo passwd kali sudo apt-get update sudo apt-get install xrdp lxde-core lxde tigervnc-standalone-server -y cd / sudo sed -i ‘s/allowed_users=.*/a...

Brace Yourself: Cyber Attacks on Australian Businesses Set to Skyrocket

2 minute read

Brace Yourself: Cyber Attacks on Australian Businesses Set to Skyrocket

The Power of In-Memory Executions: How to Execute Code without Touching Disk

6 minute read

In-memory execution is a technique used by malware developers to evade detection by traditional antivirus solutions. Instead of writing their malicious code ...