Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pivoting/Tunnelling #28

Open
rootabeta opened this issue Oct 15, 2020 · 4 comments
Open

Pivoting/Tunnelling #28

rootabeta opened this issue Oct 15, 2020 · 4 comments
Assignees
@WangYihang
Labels
enhancement New feature or request solved The problem have already been solved

Comments

@rootabeta
Copy link

rootabeta commented Oct 15, 2020
edited
Loading

It would be nice to be able to use compromised targets as proxies to allow pivoting into a target's network. This feature would greatly improve the utility of the tool and enable it to be used as a flexible and powerful C2 framework for pentesting engagements.
@rootabeta rootabeta reopened this Oct 15, 2020
@rootabeta rootabeta changed the title [FEATURE REQUEST] Pivoting [FEATURE REQUEST] Pivoting/Tunnelling Oct 15, 2020
@WangYihang WangYihang self-assigned this Oct 16, 2020
@WangYihang WangYihang added the enhancement New feature or request label Oct 16, 2020
@WangYihang
Copy link
Owner

Great idea, I am working on designing the protocol and the architecture.

@WangYihang WangYihang changed the title [FEATURE REQUEST] Pivoting/Tunnelling Pivoting/Tunnelling May 17, 2021
WangYihang added a commit that referenced this issue Jul 10, 2021
@WangYihang
[+] #28 Add tunnel function
6285bfb
WangYihang added a commit that referenced this issue Jul 11, 2021
@WangYihang
[+] #28 Support local port frowarding
7591136
WangYihang added a commit that referenced this issue Jul 11, 2021
@WangYihang
[+] #28 Support remote port frowarding
b67f177
WangYihang added a commit that referenced this issue Jul 11, 2021
@WangYihang
[*] #28 Fix bug in remote port frowarding
2d44e66
WangYihang added a commit that referenced this issue Jul 11, 2021
@WangYihang
[+] v1.4.3
8614b0c 
1. Add port forwarding methods #28
2. Detecting Public IP address
3. Refine web UI
@WangYihang WangYihang added the solved The problem have already been solved label Jul 11, 2021
@WangYihang
Copy link
Owner

Released in v1.4.3.

@WangYihang
Copy link
Owner

Tunnel Create Pull 192.168.0.1 22 127.0.0.1 4444 is equalivalent to ssh -L 4444:192.168.0.1:22.

WangYihang added a commit that referenced this issue Jul 15, 2021
@WangYihang
[+] #28 Support for dynamic port forwarding
cc2709a
WangYihang added a commit that referenced this issue Jul 15, 2021
@WangYihang
[*] #28 Support for internet tunnel
36af0c7
WangYihang added a commit that referenced this issue Jul 15, 2021
@WangYihang
[+] #28 Support for dynamic port forwarding
5e632a5
WangYihang added a commit that referenced this issue Jul 16, 2021
@WangYihang
[+] #28 Add tunnel function
17b6e31
WangYihang added a commit that referenced this issue Jul 16, 2021
@WangYihang
[+] #28 Support local port frowarding
02c3a49
WangYihang added a commit that referenced this issue Jul 16, 2021
@WangYihang
[+] #28 Support remote port frowarding
160b11a
WangYihang added a commit that referenced this issue Jul 16, 2021
@WangYihang
[*] #28 Fix bug in remote port frowarding
ddf7ef9
WangYihang added a commit that referenced this issue Jul 16, 2021
@WangYihang
[+] v1.4.3
034e074 
1. Add port forwarding methods #28
2. Detecting Public IP address
3. Refine web UI
WangYihang added a commit that referenced this issue Jul 16, 2021
@WangYihang
[+] #28 Support for dynamic port forwarding
c710fe1
WangYihang added a commit that referenced this issue Aug 12, 2021
@WangYihang
[+] #28 Add tunnel function
dffd811
WangYihang added a commit that referenced this issue Aug 12, 2021
@WangYihang
[+] #28 Support local port frowarding
671dd8e
WangYihang added a commit that referenced this issue Aug 12, 2021
@WangYihang
[+] #28 Support remote port frowarding
b7f3c85
WangYihang added a commit that referenced this issue Aug 12, 2021
@WangYihang
[*] #28 Fix bug in remote port frowarding
ccd1927
WangYihang added a commit that referenced this issue Aug 12, 2021
@WangYihang
[+] v1.4.3
8235e9c 
1. Add port forwarding methods #28
2. Detecting Public IP address
3. Refine web UI
WangYihang added a commit that referenced this issue Aug 12, 2021
@WangYihang
[+] #28 Support for dynamic port forwarding
678a57c
WangYihang added a commit that referenced this issue Aug 13, 2021
@WangYihang
[+] #28 Add tunnel function
3ce56a3
WangYihang added a commit that referenced this issue Aug 13, 2021
@WangYihang
[+] #28 Support local port frowarding
40f42ab
WangYihang added a commit that referenced this issue Aug 13, 2021
@WangYihang
[+] #28 Support remote port frowarding
4b315ac
WangYihang added a commit that referenced this issue Aug 13, 2021
@WangYihang
[*] #28 Fix bug in remote port frowarding
d847a12
WangYihang added a commit that referenced this issue Aug 13, 2021
@WangYihang
[+] v1.4.3
ef05907 
1. Add port forwarding methods #28
2. Detecting Public IP address
3. Refine web UI
WangYihang added a commit that referenced this issue Aug 13, 2021
@WangYihang
[+] #28 Support for dynamic port forwarding
b3b7bcc
@hy0gy
Copy link

hy0gy commented Aug 23, 2021
edited
Loading

Can you please provide an example also for push, dynamic and internet modes?
Also, to create a tunnel the upgrade command is mandatory, but what about if the established connection is already TLS?
I mean:

TLS client -> TLS server -> Platypus

There is no need in upgrading the session, and creating a tunnel is not possible.
Would be really nice so to create a tunnel even with a not upgraded session, like a simple netcat for example could do.
Or even better, would be nice to encrypt just the new tunnel rather than the entire session of the victim to create a new one ( If I understood correctly how the upgrade/ tunnel commands work ). Something like that:

TLS client -> TLS server -> Platypus -> Tunnel [Create|Delete] [Pull|Push|Dynamic|Internet] [Src Host] [Src Port] [Dst Host] [Dst Port] [TLS|NOT ENCRYPTED] [TCP|UDP]

If you can explain how the upgrade and tunnel commands work I can give a more accurate idea and point you to a correct suggestion(:

@WangYihang WangYihang reopened this Aug 23, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@WangYihang WangYihang

Labels
enhancement New feature or request solved The problem have already been solved
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@WangYihang @rootabeta @hy0gy