Scenario for Reference


Kali 
- tun0 / 10.10.15.115

Ubuntu-Pivot 
-  ens192 / 10.129.110.16
-  ens224 / 172.16.5.129

Windows-Unreachable-Target
-  172.16.5.19

Set Up Chisel

git clone https://github.com/jpillora/chisel.git
cd chisel
go build

Transferring & Running Chisel binary on Pivot Host


# Kali
scp -r chisel ubuntu@10.129.110.16:/home/ubuntu
ssh ubuntu@10.129.110.16

# Ubuntu-pivot
./chisel.server -v -p 1234 --socks5
"-> Chistel now listens on incoming connecection on port 1234 using SOCKS5 and will forward all traffic to all networks (interfaces) connected on the machine "


# Kali 
./chisel client -v 10.129.110.16:1234 socks
"The output will display the listening port that the client has initiated (tun: proxy#127.0.0.1:PORT<1080>=>socks: Listening)"

sudo nano /etc/proxychains4.conf
"socks5 127.0.0.1 1080"

proxychains xfreerdp /v:172.16.5.19 /u:victor /p:pass@123

Chisel Reverse Pivot

When Inbound traffic to pivot-host-ubuntu is blocked

Port Forwarding with Chisel

Scenario for Reference

Set Up Chisel

Transferring & Running Chisel binary on Pivot Host

Chisel Reverse Pivot