ligolo-ng
chisel
ligolo-ng | chisel | |
---|---|---|
5 | 29 | |
2,160 | 12,083 | |
8.2% | - | |
5.8 | 4.4 | |
10 days ago | 6 days ago | |
Go | Go | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ligolo-ng
-
Actual SSH over HTTPS
I learned about chisel in PEN-200 / preparing for the OSCP.
Then I learned about, Ligolo-ng [1] which is a game-changer. I highly recommend checking it out. It is most applicable to a penetration test. It uses TLS so I'm not sure it could be used to address the issue mentioned in the article.
[1] https://github.com/nicocha30/ligolo-ng
- Haven't been using kali in a long time and wanted to know why Ngrok is not working on Blackeye? blackeye itself doesn't exist anymore lol
- Ligolo-ng: IP tunneling via tun interface
- Ligolo-ng: An advanced, yet simple, tunneling tool that uses a TUN interface.
- ligolo-ng: An advanced, yet simple, tunneling tool that uses a TUN interface.
chisel
-
List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting.
chisel - SSH under the hood, but still uses a custom client binary. Supports auto certs from LetsEncrypt. Written in Go.
-
Chisel: A fast TCP/UDP tunnel over HTTP
Looking at the perf https://github.com/jpillora/chisel/blob/master/test/bench/pe... it looks not too bad!
I have a few TCP based utilities. I was thinking I need to make websocket equivalents for it to work on the web, but happy to see this project, I will be evaluating this soon, it should save me some time.
Thanks for sharing!
-
Actual SSH over HTTPS
Personally I use https://github.com/jpillora/chisel as a reverse Proxy through nginx, then connect through it using OpenVPN to bypass a similarly restrictive firewall. But this discussion is filled with other, similar hacks, I may have to try some of them.
-
List of your reverse proxied services
To keep everything secure, each chisel client has a separate TLS private key. That lets my reverse proxy authenticate the client before allowing a connection to the Chisel backend service. And on the Chisel backend service side, the --auth= part allows that particular client to bind to the specific XXX port within that Docker container. https://github.com/jpillora/chisel/blob/master/example/users.json
-
Ask HN: What's the big deal with Go (Golang)?
I love it in the context of hacking actually. When working on HackTheBox machines or other CTFs you sometimes need to deploy tools onto the machine like these:
* https://github.com/jpillora/chisel
-
apps that changed your life
rclone and chisel. rclone is a high quality swiss-army knife for selfhosting. It does a lot of things and it does all of those things surprisingly well. chisel provides an TCP/UDP tunnel over websockets. When heroku used to be free, I had a couple of chisel instances running on Heroku, which I would use, occasionally, to quickly access any of my locally hosted apps or servers.
-
Exposer son pod à distance dans Kubernetes ou OpenShift avec Rust …
GitHub - jpillora/chisel: A fast TCP/UDP tunnel over HTTP
- Hippotat: IP over HTTP
- Ask HN: Books/resources/materials that teach you VPN fundamental?
-
Need your help ASAP
You should try Chisel https://github.com/jpillora/chisel
What are some alternatives?
drago - ☁️ Securely connect anything with WireGuard® and manage all your networks from a single place.
frp - A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
Stowaway - 👻Stowaway -- Multi-hop Proxy Tool for pentesters
clash - A rule-based tunnel in Go.
merlin - Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
shadowsocks-rust - A Rust port of shadowsocks
kubesploit - Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
cloudflared - Cloudflare Tunnel client (formerly Argo Tunnel)
ToRat - ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication
sslh - Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port)
HackBrowserData - Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
SOCKS5-proxy-actions - SOCKS5 proxy running on GitHub Actions using Chisel