Collaborate Disseminate
In a CTF, I want to attack a Bluekeep vulnerable machine over the internet using metasploit, but the problem is my Kali machine (attacker) is not exposed to the internet, so the vulnerable machine cannot send me back a reverse shell.
So I … Continue reading Pivoting over internet [closed]
I won’t lie, I am not a security expert and I am likely one of them guys in them companies whom working life proficiency is to slowly become little annoying. I work for a company complying with PCI DSS standard and the company slowly start… Continue reading PCI DSS 4.0 – Are SSH tunnels and gateways doomed?
If a PCI compliant service decides to SSL-Tunnel credit card information via an independent residential/mobile proxy service to a destination payment service, would this protocol still be PCI compliant?
Since the credit card information is… Continue reading PCI-DSS Compliance: SSL Tunneling Credit Card Information Through A HTTPS Mobile/Residential Proxy Service to A Destination Service
I have a networking routing problem which I am unable to find a solution for:
I have a first machine, 192.168.51.103 (Windows), which is linked to subnet 172.16.51.0/24. To access this subnet, I first compromised 192.168.51.103 and then us… Continue reading How to double hop pivot?
How can an attacker with initial access to a server behind a firewall, which only has SSH, HTTPS, and HTTP ports open, maintain remote access to the server even after the SSH port is closed by the user on the firewall?
I have searched these questions and answers but none of them directly answering the question:
I knew its by implementing any kind of reverse shell, creating a tunnel that sending outbound connection to attacker server:
Why a tunnel – reverse shell not detected by Firewall or such Antivirus on the OS? until this point, I worked on many computers and tested if a tunnel works or not, none of them blocked me even with enterprise firewall and client security software.
Continue reading How outgoing tunnels are not stopped by AV or firewalls?
I need some help understanding the security implications of using a service like ngrok to setup an ssh connection.
I’ve got two computers without public IP addresses (both using mobile internet connections) so I can’t ssh directly from com… Continue reading Security of SSH with Service like ngrok
I wrapped my Socks5 traffic in TLS using Stunnel and the Stunnel server is listening on the port 443:tcp.
I can connect successfully to Stunnel server and exchange Socks5 traffic.
From the perspective of DPI (Deep packet inspection), is th… Continue reading Does the traffic tunnelled using Stunnel on port 443:TCP appear the same as normal HTTPS to DPI?
My ISP seems to be blocking the wire guard protocol since it does not work in my home network but works fine in other places, I am using wire guard since it is easy to setup
the network i have has two machines (wg-server, client)
on the se… Continue reading Public IP address does not change when tunneling wire guard over socat?
I need to travel aborad for few weeks. My company needs my laptop IP from strictely perticular country. I can do that with VPN on router or on my mobile hotspot.
Also for many a times I need to use company VPN for some of my work. I was th… Continue reading Can I at the same time use Personal VPN on home router/mobile hotspot and company VPN on employers laptop?
While setting up a new VPS instance running Ubuntu, I found that I needed to set AllowTcpForwarding yes in /etc/ssh/sshd_config to achieve a remote VS Code connection. I am and will be the sole user who can log in on that instance, root lo… Continue reading Security Implications of Allowing TCP Forwarding to Use vscode-server