Local Port Forwarding

Local forwarding allows to forward a port on your local machine to a port on a remote target.

Socat

A tool for bidirectional data transfer between two endpoints.

Opens a listening TCP port on the local machine on given port and uses fork to handle multiple connections. Then forwards the incoming traffic to the remote IP on given port

socat -ddd TCP-LISTEN:<local_port>,fork TCP:<remote_ip>:<remote_port>

-ddd: Enables debug mode with detailed output

Netsh

netsh (Network Shell) is a command-line utility in Windows that allows for the configuration and management of networking components and settings.

Local Admin is required to use this tool. In order to bypass UAC use it through RDP running batch shell as administrator

Adds a rule to forward traffic from <LISTEN_IP>:<LISTEN_PORT> to <TARGET_IP>:<TARGET_PORT>.

netsh interface portproxy add v4tov4 listenport=<LISTEN_PORT> listenaddress=<LISTEN_IP> connectport=<TARGET_PORT> connectaddress=<TARGET_IP>

Displays the existing port forwarding rules.

netsh interface portproxy show all

Allows incoming traffic for <LISTEN_IP>:<LISTEN_PORT> via TCP.

netsh advfirewall firewall add rule name="<RULE_NAME>" protocol=TCP dir=in localip=<LISTEN_IP> localport=<LISTEN_PORT> action=allow

Removes a specified firewall rule.

netsh advfirewall firewall delete rule name="<RULE_NAME>"

Deletes the port forwarding rule for <LISTEN_IP>:<LISTEN_PORT>.

netsh interface portproxy del v4tov4 listenport=<LISTEN_PORT> listenaddress=<LISTEN_IP>

SSH

ssh -N -L <local_ip>:<local_port>:<target_ip>:<target_port> <ssh_server_username>@<ssh_server_ip>

PreviousPort Forwarding, Tunneling and Pivoting NextRemote Port Forwarding

Last updated 1 year ago

hashtagSocat

hashtagNetsh

hashtagSSH

Socat

Netsh

SSH