Common tools for penetration testing-stunnel intranet penetration

Others 2020-04-15 17:36:38 views: null

About the principle of intranet penetration, you can check my other article introduction: Common tools for penetration testing-ptunnel intranet penetration

Stunnel is a free cross-platform software used to provide global TLS / SSL services. For clients and servers that cannot perform TLS or SSL communication by themselves, Stunnel can provide a secure encrypted connection. The software can run under many operating systems, including Unix-like systems, as well as Windows. Stunnel relies on an independent library, such as OpenSSL or SSLeay, to implement TLS or SSL protocol.

Experimental test

We need a proxy server, an attack machine, and a target machine.
Attacker IP: 192.168.3.104
Springboard IP: 192.168.3.106
Target IP: 192.168.3.108

Turn on the telnet service of the target machine

Insert picture description here

Generate certificate

Use OpenSSL to generate a certificate
[-x509]: Generate a self-signed certificate
[-new]: Generate a certificate request
[-keyout]: Specify the generated key name
[-config]: Parameter file, the default is /etc/ssl/openssl.cnf , Depending on the location of the system. This file contains the parameters when generating the req. When not specified on the command line, the default values ​​in this file are used.
[-Days]: Specify the validity period of the signature certificate

Insert picture description here

Configure springboard configuration file

Insert picture description here
[Cert = /etc/stunnel/stunnel.pem]: Configure the location of the specified certificate
[chroot = / var / log / stunnel /]: Configure the location of the cache directory at runtime
[pid = /stunnel.pid]: Configure the process ID at runtime Dependency file
[[telnets]]: configure Telnet
[accept = 2323]: specify the Telnet action request port
[connect =]: specify the target Telnet ip address

Insert picture description here

Start the stunnel service

Attacker configuration file

[Chroot = / var / log / stunnel /]: configure the runtime cache directory location
[pid = /stunnel.pid]: configure the runtime process ID dependent file
[client = yes]: specify the mode as the client
[[telnets]] :
[Accept = 2323]: The default port Telnet is 2323
[connect =]: Specify the target address of the connection

Insert picture description here

Start service

Insert picture description here
Insert picture description here
Insert picture description here

_abcdef
Published 70 original articles · Liked 17 · Visits 6689
Private letter concerns

Guess you like

Origin blog.csdn.net/qq_38626043/article/details/104415634
Recommended
Arc Browser for Windows 1.0 officially GA
A programmer born in the 1990s developed a video porting software and made over 7 million in less than a year. The ending was very punishing!
Ranking
1. Select Sort
Create a thread thread
3 press to play ball that reach 6
Programmation CUDA (4) : gestion de la mémoire
SpringBoot database connection pool Druid error
E Diudiu App redesign summary
4EVERLAND Hosting now supports SNS+IPFS
About HTTPS
[vue3+vite+ts+element-plu+sass] uses bug records in sass
Interpretation of HUAWEI CLOUD GaussDB (for Influx): Best Practice Data Modeling
Daily
More
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)

Code World

© 2018 codetd.com