Node hopping – pivoting
Once we are in one system on the network, we need to now look for other machines on the network. Information gathering is the same as what we learned in the previous chapters. We can start by installing and using nmap to look for other hosts and the application or services running. In this recipe, you will learn about a few tricks to get access to the port in the network.
How to do it...
Let's assume we have shell access to a machine. We run ipconfig and find that the machine is connected to two other networks internally:
Now we nmap scan the network and find some machines with a couple of ports open. You learned about a cool way of pivoting into the networks so that we can access the applications running behind other network on our machine.
We will do a ssh port forward using the following command:
ssh –L <our port> <remote ip> <remote port> username@IP
Once this is done, we open the browser and go to the port number we used:
We will have access to the...
