rpivot: socks4 reverse proxy for penetration testing
RPIVOT allows to tunnel traffic into an internal network via socks 4. It works like ssh dynamic port forwarding but in the opposite direction.
This tool is Python 2.6-2.7 compatible and has no dependencies beyond the standard library. It has a client-server architecture. Just run the client on the machine you want to tunnel the traffic through. The server should be started on pentester’s machine and listen to incoming connections from the client.
Works on Kali Linux, Solaris 10, Windows, Mac OS.
Start server listener on port 9999, which creates a socks 4 proxy on 127.0.0.1:1080 upon connection from client:
Connect to the server:
To pivot through an NTLM proxy:
Pass-the-hash is supported:
You can use proxychains to tunnel traffic through socks proxy.
Pivot and have fun:
Author: Artem Kondratenko