Pivoting
MITRE ATT&CK, Command and Control, Technique T1572
Pivoting with SSH
Setting up a SOCKS Proxy with Chisel
1. Download the latest Chisel binaries
Note, you will need the Chisel binary placed on both your attacking system the target system.
2. On the attacking system:
3. On the target system:
4. Observe on the attacking system that the SOCKS5 connection has been successfully established.
Forwarding One Port with Chisel
1. On the attacking system:
2. On the target system:
Verification
The easiest way to verify if your Chisel
connection was successful is to run the following command:
Interaction
Ensure to remember that you will be interacting with localhost
after forwarding a port. For example, by running
Nmap Scanning through Proxychains
When performing scans on the network through proxychains it is important to use the -sT
flag. The following command demonstrates an Nmap command to use:
You do not need this when utilizing SOCKS5 as it supports both ICMP and DNS.
References
SSH
Chisel
Last updated