Johnermac
  • About me
  • Active Directory
    • PowerShell
      • Customize
      • Notes
      • ETW
      • AMSI Bypass
      • Obfuscation
    • Enumeration
      • Domain
      • GPO
      • ACL
      • Domain Trusts
      • Forest
      • Extra
      • BloodHound
      • BloodHound CE
  • Tunneling
    • Tools
      • Udp2Raw
      • Fraud Bridge
      • Chisel
      • SSF
      • Egress-Assess
      • Ligolo-ng
      • Sshutle
      • Rpivot
      • Tunna
      • reGeorg
      • Neo-reGeorg
      • PivotSuite
  • Post-Exploitation
    • Data Exfiltration
      • HTTP
        • Cancel
        • wget
        • bash
        • busybox
        • IRB
        • PHP
        • Ruby
      • ICMP
        • XXD
        • Ruby
        • Python
      • UDP
        • Netcat
      • TCP
        • Netcat
        • KSH
        • whois
        • Finger
      • HTTPS
        • Python
        • OpenSSL
  • BLOG
    • Articles
      • Pivoting for Red Teaming
Powered by GitBook
On this page
  • How to use
  • Using Socks
  1. Tunneling
  2. Tools

Chisel

Chisel is a fast TCP/UDP tunnel, transported over HTTP, secured via SSH

PreviousFraud BridgeNextSSF

Last updated 1 year ago

Source: https://github.com/jpillora/chisel

How to use

Chisel is mainly useful for passing through firewalls, though it can also be used to provide a secure endpoint into your network.

In this case, we're setting a reverse port forward

Using Socks

Here we set the reverse port as before, but we'll set a socks proxy by opening a server on the target

All the traffic goes through the tunneling on port 5555

Set the server
Connect the client to the server
Access the service through the tunnel
Set the /etc/proxychains.conf
set the server
connect to the server
Opening a server with socks5 on the target
receiving the connection on the attacker machine
nmap with proxychains
nmap without proxychains
wireshark results