Bypassing application-level controls
Bypassing application controls is a straightforward activity after exploitation. Multiple application-level protections/controls are put in place. In this section, we will take a deep dive into common application-level controls and strategies to bypass them and establish a connection to the internet from the corporate network.
Tunneling past client-side firewalls using SSH
One of the main things to learn after adding yourself to the internal network is how to tunnel past firewalls using SSH. We will now explore setting up a reverse tunnel to the attack box from the external internet by circumventing all the security controls put in place.
Inbound to outbound
In the following example, Kali Linux is running on the internet cloud at 18.x.x.74
and running the SSH service on port 443
(make sure you change your SSH settings to change the port number by editing /etc/sshd_config
and Port
to 443)
. From the internal corporate network, if...