iptables – Page 10 – WindowsTechs.com

Building a malicious captive portal

Posted on June 22, 2018 by Anthony Russell

So I’m trying to build a malicious captive portal but I’m stuck on the part where you need to know stuff.

Anytime a HTTP request comes in, everything works fine. However, when an HTTPS connection comes in, it refuses to acc… Continue reading Building a malicious captive portal→

Stop connection with IP after X packets

Posted on June 15, 2018 by bob dylan

There is a communication between my machine and a server (10 packets), and i’m trying to control it packet by packet. How can I stop all communication after x packets ? (1-9 in my case)

I tried to use tshark -c 2 host xxx.xx… Continue reading Stop connection with IP after X packets→

Is iptables and vpn tunneling enough? [on hold]

Posted on June 12, 2018 by androux

What is the best approach to secure connection between two devices over the internet (public IP)?

if there is a firewall on my public IP address deny access all incoming connection, can the hacker get access to my server fro… Continue reading Is iptables and vpn tunneling enough? [on hold]→

iptables allow rsyslog out [migrated]

Posted on May 27, 2018 by user3005195

I am using iptables-persistent to control networking on a debain box. I have been trying for hours to allow outbound traffic on udp port 514:

Using this line I am unable to telnet to my rsyslog server on udp 514 – any ideas… Continue reading iptables allow rsyslog out [migrated]→

What are the methods by which an attacker can distinguish between DROP on IPtables and a Nullroute or non-allocated IP?

Posted on May 19, 2018 by WhoKnowsWhereTheTimeGoes

Let’s say we have a server set up with set to:

iptables -P INPUT DROP

Without any other rules on the input chain.

Ignoring accessibility issues outside of physical server access, what are the methods that an external … Continue reading What are the methods by which an attacker can distinguish between DROP on IPtables and a Nullroute or non-allocated IP?→

How to country block, but allow http https with IPtables / IPset?

Posted on May 12, 2018 by Tyler

Here is how:

#!/bin/sh
# Remove #, then add # on line above to enable logs!
# Optional: Rename [BLOCKED – INBOUND] to specified country (only one name at a time allowed atm)
# Usage is as follows For AsusWRT Merlin:
# sh /jf… Continue reading How to country block, but allow http https with IPtables / IPset?→

NAT: Why do some applications not require manual port forwarding?

Posted on May 10, 2018 by tjt263

Regarding Network Address Translation:

Why do some applications require port forwarding to be manually configured at the router to traverse the NAT while others do not?

I understand that NAT wasn’t originally designed with … Continue reading NAT: Why do some applications not require manual port forwarding?→

SSL Strip failing

Posted on April 16, 2018 by user148898

I am trying to learn how SSL strip is used. I have Kali Linux machine (attacker), a windows machine as a target, and an access point. All my machines are physical machines and not VMs.

I’ve done the following so far

Enab… Continue reading SSL Strip failing→

Connection to port successful despite filtering

Posted on March 27, 2018 by Christian David

I run my own (Ubuntu based) router and have iptables configured to drop all incoming packets by default. To my surprise, running an nmap scan (from the WAN side) shows two open ports related to VOIP:

nmap -Pn XXX.net

Starti… Continue reading Connection to port successful despite filtering→

Intercept data after sslstrip

Posted on March 26, 2018 by James

I am able to use sslstrip successfully as shown here https://moxie.org/software/sslstrip/

What I want to do though is be able to use sslstrip with another proxy/script to modify requests/responses AFTER they are stripped.

I… Continue reading Intercept data after sslstrip→