Johnermac
  • About me
  • Active Directory
    • PowerShell
      • Customize
      • Notes
      • ETW
      • AMSI Bypass
      • Obfuscation
    • Enumeration
      • Domain
      • GPO
      • ACL
      • Domain Trusts
      • Forest
      • Extra
      • BloodHound
      • BloodHound CE
  • Tunneling
    • Tools
      • Udp2Raw
      • Fraud Bridge
      • Chisel
      • SSF
      • Egress-Assess
      • Ligolo-ng
      • Sshutle
      • Rpivot
      • Tunna
      • reGeorg
      • Neo-reGeorg
      • PivotSuite
  • Post-Exploitation
    • Data Exfiltration
      • HTTP
        • Cancel
        • wget
        • bash
        • busybox
        • IRB
        • PHP
        • Ruby
      • ICMP
        • XXD
        • Ruby
        • Python
      • UDP
        • Netcat
      • TCP
        • Netcat
        • KSH
        • whois
        • Finger
      • HTTPS
        • Python
        • OpenSSL
  • BLOG
    • Articles
      • Pivoting for Red Teaming
Powered by GitBook
On this page
  • How to use
  • Using Socks
  1. Tunneling
  2. Tools

Chisel

Chisel is a fast TCP/UDP tunnel, transported over HTTP, secured via SSH

PreviousFraud BridgeNextSSF

Last updated 2 years ago

Source:

How to use

Chisel is mainly useful for passing through firewalls, though it can also be used to provide a secure endpoint into your network.

In this case, we're setting a reverse port forward

Using Socks

Here we set the reverse port as before, but we'll set a socks proxy by opening a server on the target

All the traffic goes through the tunneling on port 5555

https://github.com/jpillora/chisel
Set the server
Connect the client to the server
Access the service through the tunnel
Set the /etc/proxychains.conf
set the server
connect to the server
Opening a server with socks5 on the target
receiving the connection on the attacker machine
nmap with proxychains
nmap without proxychains
wireshark results