ligolo-ng
what-vpn
ligolo-ng | what-vpn | |
---|---|---|
5 | 1 | |
2,160 | 59 | |
8.2% | - | |
5.8 | 3.4 | |
10 days ago | 19 days ago | |
Go | Python | |
GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
ligolo-ng
-
Actual SSH over HTTPS
I learned about chisel in PEN-200 / preparing for the OSCP.
Then I learned about, Ligolo-ng [1] which is a game-changer. I highly recommend checking it out. It is most applicable to a penetration test. It uses TLS so I'm not sure it could be used to address the issue mentioned in the article.
[1] https://github.com/nicocha30/ligolo-ng
- Haven't been using kali in a long time and wanted to know why Ngrok is not working on Blackeye? blackeye itself doesn't exist anymore lol
- Ligolo-ng: IP tunneling via tun interface
- Ligolo-ng: An advanced, yet simple, tunneling tool that uses a TUN interface.
- ligolo-ng: An advanced, yet simple, tunneling tool that uses a TUN interface.
what-vpn
-
Actual SSH over HTTPS
From the article:
> Ubiquitous presence of HTTPS allows you to pass your data through very restrictive middle boxes!
This is, in fact, why all — or nearly all — proprietary VPN protocols (so-called "SSL VPNs") implement a mode that initiates a tunnel via HTTPS, at least as a fallback if not as the primary mode of operation: precisely in order to have a mode of operation that works with almost any connection to the global Internet.
I'm one of the main developers of https://gitlab.com/openconnect/openconnect, which implements many such protocols, and wrote https://github.com/dlenski/what-vpn, which sniffs or identifies even more flavors of TLS-based VPN servers.
What are some alternatives?
drago - ☁️ Securely connect anything with WireGuard® and manage all your networks from a single place.
gRPC - The C based gRPC (C++, Python, Ruby, Objective-C, PHP, C#)
Stowaway - 👻Stowaway -- Multi-hop Proxy Tool for pentesters
sslh - Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port)
merlin - Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
kubesploit - Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
ToRat - ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication
HackBrowserData - Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
emp3r0r - Linux/Windows post-exploitation framework made by linux user
turbo-attack - A turbo traffic generator pentesting tool to generate random traffic with random mac and ip addresses in addition to random sequence numbers to a particular ip and port.
chisel - A fast TCP/UDP tunnel over HTTP