Pivoting

Set up a SOCKS proxy

# Gather IP address of internal host
ping <hostname>

# Add route to the internal host
run autoroute -s <IP address internal host>/24

# Add following line to /etc/proxychains.conf
socks4 127.0.0.1 9050

# Run Metasploit module
use auxiliary/server/socks_proxy

set SRVPORT 9050
set VERSION 4a
run

# Check if module is running
jobs

# Check if internal host is reachable from out attacker machine
proxychains nmap <hostname> -sT -Pn -sV --top-ports 100
PreviousPersistenceNextPrivilege Escalation

Last updated