Cheatsheet
  • Documentation
  • Nmap
  • Ffuf
  • FTP
  • SMB
  • RPC
  • NFS
  • DNS
  • SMTP
  • IMAP / POP3
  • SNMP
  • SQL
  • Rsync
  • Certipy
  • CrackMapExec
  • Transferring Files
  • Windows Remote Management
  • Windows AV
  • Wordpress
  • Infrastructure Enumeration
  • Privilege Escalation
  • Docker Breakout
  • Shells
  • SSTI
  • XSS
  • Pivot
    • SSH Tunneling
    • Chisel
    • Ligolo-ng
    • Meterpreter
  • LDAP
  • Spray
  • Antivirus / EDR
  • Impacket
  • Bloodhound
  • Powershell
  • Kerberosting
  • Password Attacks
  • Command Injections
  • Sliver C2
  • Windows credentials
  • Windows persistance
  • VSCode Debug
Powered by GitBook
On this page
  • Port Forwarding
  • Proxychains
  1. Pivot

SSH Tunneling

Port Forwarding

ssh -D 7000 qu35t@qu35t.pw

Map port from remote machine/network on local machine.

ssh -L 9002:127.0.0.1:3306 qu35t@qu35t.pw

Make local port accessable to remote machine.

ssh -R 9004:127.0.0.1:9002 qu35t@qu35t.pw
qu35t@qu35t.pw:~$ ~C
ssh> -L 9002:127.0.0.1:3306

Proxychains

Add this following line at the end of the /etc/proxychains.conf file.

socks5 127.0.0.1 7000
proxychains -q nmap -T4 -sn 172.10.0.0/24 --unprivileged
PreviousPivotNextChisel

Last updated 2 years ago