Tunna
Tunna is a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments.
Source: https://github.com/SECFORCE/Tunna
Prerequisites
A vulnerable web server to upload the web shell
Tunna now Supports Python3
How to use


-l = (local) - it opens a local SOCKS proxy server
-r = (remote) - it redirects a port of the target to the tunnel port
In this case I'm using the .jsp, but there is also a .php and .aspx that works the same


When we access the file with Curl, we can see the confirmation of the access on TunnaWebServer and in our python webserver as a demonstration


Transfer Files
We can extract files using the same method



The web shell is not very reliable, and we have to open ports individually
Last updated