Dynamic Port Forwarding

Dynamic Port Forwarding is the most practical SSH port forwarding of the lot. In this technique any connection made to a local port can be forwarded to any port on a remote machine through a proxy. Now the connections are not limited to just one system or port, instead any number of connections can be made through proxychains.

Local Port Forwarding

Scenario/Goal

Let there be 3 systems - A, B and C.

A -> B is possible through an SSH connection

B -> C is on the same network with access to the service running on C

A -> C There is no accessibility between the two. They could be in completely different networks or a firewall could prevent them from connecting

System A
Requirement

Level of Compromise

Root Access

Softwares

SSH

IP

192.168.1.10

System B
Requirement

Level of Compromise

Elevated Privilege with Passwords

IPs

192.168.1.20, 172.16.1.20

System C
Requirements

Level of Compromise

None

Softwares

Port no. of service to be accessed (e.g Shares on Windows)

IP

172.16.1.30

System A

We will be using proxychains service as a proxy to send the requests through the SSH tunnel to the targetted systems and services,

For this example since we are going to scan of a given IP,

Remote Port Forwarding

Similar to the previous scenario, but lets imagine a firewall blocking access to the compromised system B. However, you have gained reverse shell from system B to system A, then the Remote Dynamic Port Forwarding comes in handy.

System B

We will be using proxychains service as a proxy to send the requests through the SSH tunnel to the targetted systems and services,

For this example since we are going to scan of a given IP,

PreviousRemote Port ForwardingNextHTTP Tunnel-ing

Last updated

Was this helpful?