NeilSec: Security Learning Blog

Pentesting, infosec, hacking, learning.

  • Home
  • Knowledgebase

SSH Tunnels

2017-12-21 by Neil Leave a Comment

An SSH tunnel allows you to route traffic through an SSH connection. It encrypts the traffic and routes it from a port on one computer to a port on the remote computer. It's also called SSH Port Forwarding. A basic ssh connection takes the form: username@sshserverIP -p ssh-server-port. E.g. root@10.0.0.4 -p 1234 (you don't need the -p switch if using standard ssh port 22) To perform port forwarding we add a switch such as -L or -R. Local Port Forwarding We use the -L for Local port forwarding with the following switch syntax: -L Continue Reading

OverTheWire: Bandit

2017-10-01 by Neil Leave a Comment

In search of shorter, easier challenges I came across https://overthewire.org which has various "wargames" on it, the easiest apparently being the Bandit challenge. It looks to be different than proper virtualised networks to hack into but maybe interesting and I should learn some basics that no doubt I'm missing. Bandit Level O The goal of this level is for you to log into the game using SSH. The host to which you need to connect is bandit.labs.overthewire.org, on port 2220. The username is bandit0 and the password is bandit0. Once logged in, go to the Level 1 page to find out how to beat Continue Reading

About Me

I’m currently a systems admin / consultant at a IT firm who looks after the computer systems of small businesses in the UK. IT security is only a part of that job. However I’ve always enjoyed breaking into, getting around, subverting and otherwise hacking things, systems and ideas. In tackling some low-level IT security tasks I reignited my interest in the field and this blog charts my progress in the world of Computer Security, legal Hacking, Penetration Testing, Infosec – whatever you want to call it. As a Windows guy I’m learning about Linux, shell-scripting, python and all the other skills needed in this field.

Tags

Apache Boot-to-Root CTF curl dib Dirbuster FreeBSD Hack The Box Linux mysql NFS Penetration Testing PHP RCE shell VulnHub Wordpress

Categories

© 2023 · NeilSec;