[NEED HELP] Взлом сетевой инфраструктуры предприятия

#10

08.07.2017, 12:06

ACat

Guest

Сообщений: n/a

Провел на форуме:
60408

Репутация: 0

Цитата:

Сообщение от SooLFaa

SooLFaa said:
↑
sshuttle заверни весь трафик. portfwd если в сесси метерпретера. или ssh -L [портворвард]

Цитата:

Сообщение от None

root@swagcat13:~/TheFatRat# sshuttle -r swagcat13@ipaddr 0.0.0.0/0 -vv
Starting sshuttle proxy.
firewall manager: Starting firewall with Python version 3.5.3
firewall manager: ready method name nat.
IPv6 enabled: False
UDP enabled: False
DNS enabled: False
Binding redirector: 12300
TCP redirector listening on ('127.0.0.1', 12300).
TCP redirector listening with .
Starting client with Python version 3.5.3
c : connecting to server...
c : executing: ['ssh', 'swagcat13@ipaddr', '--', 'exec /bin/sh -c \'P=python3.5; $P -V 2>/dev/null || P=python; exec "$P" -c \'"\'"\'import sys, os; verbosity=2; sys.stdin = os.fdopen(0, "rb"); exec(compile(sys.stdin.read(978), "assembler.py", "exec"))\'"\'"\'\'']
c : > channel=0 cmd=PING len=7 (fullness=0)
swagcat13@62.244.6.30's password:
server: assembling u'sshuttle' (7 bytes)
server: assembling u'sshuttle.cmdline_options' (44 bytes)
server: assembling u'sshuttle.helpers' (950 bytes)
server: assembling u'sshuttle.ssnet' (5541 bytes)
server: assembling u'sshuttle.hostwatch' (2365 bytes)
server: assembling u'sshuttle.server' (3298 bytes)
Starting server with Python version 2.6.6
s: latency control setting = True
s: available routes:
s: 2/169.254.0.0/16
s: > channel=0 cmd=PING len=7 (fullness=0)
s: > channel=0 cmd=ROUTES len=17 (fullness=7)
s: Waiting: 1 r=[4] w=[5] x=[] (fullness=24/0)
s: Ready: 1 r=[] w=[5] x=[]
s: mux wrote: 15/15
s: Waiting: 1 r=[4] w=[5] x=[] (fullness=24/0)
s: Ready: 1 r=[] w=[5] x=[]
s: mux wrote: 25/25
s: Waiting: 1 r=[4] w=[] x=[] (fullness=24/0)
c : Connected.
c : Waiting: 2 r=[5, 8] w=[8] x=[] (fullness=7/0)
c : Ready: 2 r=[8] w=[8] x=[]
c : channel=0 cmd=PONG len=7 (fullness=7)
c : > iptables -t nat -N sshuttle-12300
>> iptables -t nat -F sshuttle-12300
>> iptables -t nat -I OUTPUT 1 -j sshuttle-12300
>> iptables -t nat -I PREROUTING 1 -j sshuttle-12300
>> iptables -t nat -A sshuttle-12300 -j RETURN --dest 127.0.0.1/32 -p tcp
>> iptables -t nat -A sshuttle-12300 -j REDIRECT --dest 0.0.0.0/0 -p tcp --to-ports 12300 -m ttl ! --ttl 42
c : mux wrote: 15/15
packet_write_wait: Connection to 62.244.6.30 port 22: Broken pipe
firewall manager: undoing changes.
firewall manager: undoing IPv4 changes.
>> iptables -t nat -D OUTPUT -j sshuttle-12300
>> iptables -t nat -D PREROUTING -j sshuttle-12300
>> iptables -t nat -F sshuttle-12300
>> iptables -t nat -X sshuttle-12300
firewall manager: undoing /etc/hosts changes.
Traceback (most recent call last):
File "/usr/bin/sshuttle", line 9, in
load_entry_point('sshuttle==0.78.1', 'console_scripts', 'sshuttle')()
File "/usr/lib/python3/dist-packages/sshuttle/cmdline.py", line 74, in main
opt.daemon, opt.pidfile)
File "/usr/lib/python3/dist-packages/sshuttle/client.py", line 726, in main
seed_hosts, auto_hosts, auto_nets, daemon)
File "/usr/lib/python3/dist-packages/sshuttle/client.py", line 511, in _main
ssnet.runonce(handlers, mux)
File "/usr/lib/python3/dist-packages/sshuttle/ssnet.py", line 585, in runonce
h.callback(s)
File "/usr/lib/python3/dist-packages/sshuttle/ssnet.py", line 485, in callback
self.flush()
File "/usr/lib/python3/dist-packages/sshuttle/ssnet.py", line 436, in flush
wrote = _nb_clean(os.write, self.wsock.fileno(), self.outbuf[0])
File "/usr/lib/python3/dist-packages/sshuttle/ssnet.py", line 79, in _nb_clean
return func(*args)
BrokenPipeError: [Errno 32] Broken pipe

это получается при коннекте с кали на промежуточный серв

root@swagcat13:~/TheFatRat# sshuttle -r swagcat13@ipaddr 0.0.0.0/0

UPD запустил. мой айпи сменился. а что теперь? как порт пробросить?

ANTICHAT — форум по информационной безопасности, OSINT и технологиям