Fast Track Yourself to Break Into Cyber Security: elevatecybersecurity.net/9f2j

Bruh. You legit saved my ass the day before the PWK exam - nothing was working and this solved it all. You are the goat!

Finally i understand pivoting. Sir, thank you so much. This video explains it crystal clear.

This video......is PHENOMENAL! It truly blows my mind that PWK 2022 and 2023 don't provide an in-depth review of chisel considering it's one of the most popular tools for pivoting and practically required knowledge for both the labs and exam. Instead, they REALLY dug deep into SSH tunneling which has it's place, but isn't nearly as versatile. I'm working through PWK 2023 labs right now, and I finally realized nowhere in the course is chisel covered like it should be. There's a single example provided that includes a web server exploit, but there are several other elements involved with the explanation, which left me a bit under-prepared for the labs. Because of your video, I finally fully understand how to effectively pivot with chisel. THANK YOU!🕶

Oh man. So much better than the way OSCP teaches it. Thank you!

Thank you! I've been advised to use this on the exam but I needed to learn how to use it.

You have a very good way of presenting and explaining.

The OSCP course material may not teach this but the CPTS material definitely does.

Golden content as all ways cheers bro

Excellent video, exactly what I was looking for and explained super clearly

Much appreciated for this awesome Pivoting technique! Thank you

Awesome Techniuqe for pivoting sir specially that sock5 mehod..thank you sir🔥🔥🔥🔥

Great video. Thank you for sharing with us.

This is sweet! Thanks for the video

Thx for this vid!! Awesome demo.

Amazing video 🎉

Another even better tool that offers simplicity is sshuttle

Lovin me some chisel and crackmap exec thanks for your content- very excited to get into the weeds on this tool!!

Love you ❤

chisel is awesome, with ssh i use sshuttle for pivoting

Good presentation appriciate good job keep going... 👍👏

I was thinking that this is not secure because it is using normal tcp/udp socks over HTTP. But then i realized it's actually doing SSH over the HTTP protocol, which provides the benefits of SSH encryption

there is a flaw with using chisel. ive had situations before when using chisel where chisel was too slow to enumerate effectively ie nmap scanning

fantastic video, thx!

Thank you! 💟

If you are in the DMZ how would you enumerate internal IPs to tunnel to ? Minus the dual home situation, or is that common ? Sorry just confused how common pivoting from DMZ to internal is IRL

Nice... Really appreciated

Just a question, why if we start a chisel server on port 8080 we have to put a socks5 on port 1080 in our proxychain? and not 8080? ( by the way thank you really much for this video that was really helpfull to me :) )

Hey I love this! I was wondering, say you are behind NAT so your compromised machine can't call back. How could I go about this with chisel or even ssh? I'm not finding much online (maybe I'm just not searching something correctly?) so for now, I've settled with using metasploit bind meterpreter shells and autoroute. Then set up the proxy there. I really want a full on pivot like this though without meterpreter just for the sake of it. I'm sure I'm just missing something, but I really am not grasping how it's done. I tried a ssh -D with an ssh connection, but I'm fairly certain I did that wrong. But chisel obviously can't reach my IP due to the NAT. Thanks!

how to use chisel on multiple internal machines??

Offsec has been teaching people to use chisel for a while now

Under what circumstances would chisel not work? What if certain ports like 22 and 80 on the target are closed outbound?

u jsut got another subsciber

Did you need the proxychains command for this ? I’m asking because of the speed concern. My internet is already slow

6:43 kali | 222.131 win10 | 222.130 && 10.0.0.10 winsrv | 10.0.0.10

How I download file from kali in DC?

Thanks for this great and informative content but I have a question. I did a pivoting like this and verified that port 80 is open on the target machine. Then I could not access the website running on port 80 using a browser. How can I do this?

Hi. can you tell me if windows antivirus is disabled and what conditions? Thank you.

Sickkk video! I loved it. I didn’t understand however how you initiated a server on port 8000 and then used proxychains port 1080 for the forwarding. Why don’t we put proxychains port as 8000, just like the server and the client ? Anything I’m missing?

Hi, how would you find the ip of the DC (.100) which is connected to that network? since from the ipconfig of the remote machine you have access through code exec the ip shown is .10

Thanks :)

how would you prtfwd with chisel? can you make video?

How to replicate this environment , can you point to any VM setup?

I think this tool is already in kali linux as of now

This is why OSCP is the foundation of hacking knowledge. Don't waste time on bullshit like CEH pay for pwk and once you get your foundation then you can move on to more advanced or alternative techniques like this.

:3 This ethical hacker has a really nice place! Haha :3 🤓🧺🔥🤝😎