CS uses HTTP proxy to go online but not to go online
The CS tool comes with a machine that goes online but does not go online
There is a transit machine in area A as shown in the figure, and this machine can go out to the network. This is the most common situation. In the process of penetration testing, we often take down an edge machine with multiple network cards. The edge machine can access the internal network machines, and the internal network machines do not go out of the network. In this case, take this edge machine as a transit, and you can use the CS tool to bring the machine online without going online.
The network topology diagram is as follows:
Assuming that the machines in area A have been controlled by hackers and have gone online to CS, now you want to go online with the machines in area B on the intranet, as follows:
HTTP goes online but does not go online to the machine
The listener of CS supports the configuration of HTTP proxy, and HTTP proxy can be added when configuring the listener, so as to realize intranet online
As shown in the figure, when we configure HTTP Beacon, we can add the option configuration of HTTP Proxy below, so what does HTTP Proxy do? Usually when we use CS machine to infiltrate the target, if we don’t hide the CS machine, then the other party can easily initiate a trace to the CS machine and find the IP address of our CS machine, so when we use CS tools, usually We must make a proxy for the CS machine, so that the other party can only trace the source to the proxy machine, instead of directly tracing the source to the CS machine, so as to hide it to a certain extent, and this HTTP Proxy option is for us to add proxy machines of