HTTPTunnel包装说明
HTTPTunnel是一种隧道软件,可以通过严格的HTTP代理服务器通过纯HTTP“GET”和“POST”请求隧道的网络连接。 HTTPTunnel由两部分组成:
- 驻留在防火墙后面,并接受对将要么被映射到一个特定的远程目标服务器/端口(端口映射)或将充当SOCKS(V4和V5)代理端口网络连接的客户端。袜子验证来源可以是一个固定的用户列表,LDAP或MySQL目录。该客户端可作为独立于平台的Perl脚本或Win32的二进制文件。
- 驻留在互联网上,接受来自客户端,将被翻译并转发到网络连接到远程服务器的HTTP请求的服务器。 两个不同的服务器可供选择:
- 托管服务器,它基本上是一定要放一个支持PHP的Web服务器上的PHP脚本。把PHP脚本的Web服务器使Web服务器作为你的HTTP隧道服务器。
- 在独立的服务器,它可以作为独立于平台的Perl脚本或Win32的二进制文件。此服务器可以使用,如果您有互联网,你可以运行自己的程序(例如,你的箱子在家里)在一个盒子。使用独立的服务器(相对于托管服务器)被推荐,因为它没有从许多限制,该网络服务器可以对PHP脚本,例如最大脚本运行时(这将限制您的连接的持续时间),负载平衡遭受服务器环境,提供政策等。 所有组分的配置完成了一个基于网络的图形用户界面。支持SOCKS代理的级联。
- 作者:拉尔斯Brinkhoff
许可:GPL第二版
0x01 包含在httptunnel包工具
HTS - httptunnel服务器组件 ```bash
:~# hts -h Usage: hts [OPTION]... [HOST:][PORT] Listen for incoming httptunnel connections at PORT (default port is 8888). When a connection is made, I/O is redirected to the destination specified by the --device, --forward-port or --stdin-stdout switch. -c, --content-length BYTES use HTTP PUT requests of BYTES size
(k, M, and G postfixes recognized)-d, --device DEVICE use DEVICE for input and output -F, --forward-port HOST:PORT connect to PORT at HOST and use it for
input and output-h, --help display this help and exit -k, --keep-alive SECONDS send keepalive bytes every SECONDS seconds
(default is 5)-M, --max-connection-age SEC maximum time a connection will stay
open is SEC seconds (default is 300)-s, --stdin-stdout use stdin/stdout for communication
(implies --no-daemon)-S, --strict-content-length always write Content-Length bytes in requests -V, --version output version information and exit -w, --no-daemon don't fork into the background -p, --pid-file LOCATION write a PID file to LOCATION Report bugs to
## 0x02 HTC - httptunnel客户端组件
```bash
:~# htc -h
Usage: htc [OPTION]... HOST[:PORT]
Set up a httptunnel connection to PORT at HOST (default port is 8888).
When a connection is made, I/O is redirected from the source specified
by the --device, --forward-port or --stdin-stdout switch to the tunnel.
-A, --proxy-authorization USER:PASSWORD proxy authorization
-z, --proxy-authorization-file FILE proxy authorization file
-B, --proxy-buffer-size BYTES assume a proxy buffer size of BYTES bytes
(k, M, and G postfixes recognized)
-c, --content-length BYTES use HTTP PUT requests of BYTES size
(k, M, and G postfixes recognized)
-d, --device DEVICE use DEVICE for input and output
-F, --forward-port PORT use TCP port PORT for input and output
-h, --help display this help and exit
-k, --keep-alive SECONDS send keepalive bytes every SECONDS seconds
(default is 5)
-M, --max-connection-age SEC maximum time a connection will stay
open is SEC seconds (default is 300)
-P, --proxy HOSTNAME[:PORT] use a HTTP proxy (default port is 8080)
-s, --stdin-stdout use stdin/stdout for communication
(implies --no-daemon)
-S, --strict-content-length always write Content-Length bytes in requests
-T, --timeout TIME timeout, in milliseconds, before sending
padding to a buffering proxy
-U, --user-agent STRING specify User-Agent value in HTTP requests
-V, --version output version information and exit
-w, --no-daemon don't fork into the background
Report bugs to
0x03 HTS用法示例
开始HTS(在卡利SRV)和前锋 (-F) 端口 2130 传入连接 到 本地主机 :22。
:~# hts -F localhost:22 2139
0x04 HTC用法示例
启动HTC(在卡利HTC)和前锋 (-F) 端口 8090 传入连接 192.168.1.15:2139。 通过ssh通过 HTTPTunnel 随后连接到 卡利SRV。
:~# htc -F 8090 192.168.1.15:2139
:~# ssh localhost -p 8090
's password:
Linux kali-srv 3.12-kali1-amd64 #1 SMP Debian 3.12.6-2kali1 (2014-01-06) x86_64
The programs included with the Kali GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.
Kali GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Fri Aug 1 02:13:32 2014 from localhost
:~#
原文来自:https://www.hackfun.org/kali-tools/httptunnel_zh.html。转载请注明原出处,商用请联系原作者授权。