Client-side Exploitation Lab: proxychains fails

Flama · July 14, 2021, 2:56pm

Hello everyone

I’m currently trying to solve Lab 12 Client - Side Exploitation.
However I’m stuck in task 4: Verify the server version.

When I run

proxychains nmap -sTV -n -PN -p 21 10.10.51.21

I get the following result:

As you see the ftp port seems to be closed when it should be open. The following line makes me think there’s something wrong with my proxychains configuration:

[proxychains] Strict chain  ...  127.0.0.1:1080  ...  10.10.51.21:21 <--denied

How can I fix this?

I’m using auxiliary/server/socks_proxy instead of the socks4a mentioned in the lab, because the latter one seems to be deprecated.

I also changed the proxychains.conf as indicated in the lab:
socks4 127.0.0.1 1080

jaa · July 14, 2021, 3:41pm

This to run this.

use auxiliary/server/socks_proxy
set VERSION 4a
run

sudo nano /etc/proxychains.conf
socks4 127.0.0.1 1080

sudo proxychains nmap -sT -Pn -p21 10.10.51.21

Flama · July 14, 2021, 4:21pm

Thank you, this worked

ThorMM · October 22, 2021, 7:58pm

What did change to make it work? I am having the exact problem. The solution in lab doesn’t seem to help me.

The only different I have with @jaa 's command is " sudo nano /etc/proxychains.conf"
I have " /etc/proxychains4.conf". I don’t have the proxychains configuration file that @jaa used.

UPDATE
My issue was with routing.
Credit to Sarcastic Rant from discord for sharing his solution.

msf6 post(multi/manage/autoroute) > options

Module options (post/multi/manage/autoroute):

   Name     Current Setting  Required  Description
   ----     ---------------  --------  -----------
   CMD      add              yes       Specify the autoroute command (Accepted: add, autoadd, print, delete, default)
   NETMASK  255.255.254.0    no        Netmask (IPv4 as "255.255.255.0" or CIDR as "/24"
   SESSION  1                yes       The session to run this module on.
   SUBNET   10.10.50.0       no        Subnet (IPv4, for example, 10.10.10.0)

martin.falterme-8d77 · November 16, 2021, 10:15am

Yes that is working, you could also change in the /etc/proxychains4.conf the following line:

socks4 127.0.0.1 1080

to:

socks5 127.0.0.1 1080

Topic		Replies	Views
Black-box Penetration Test 2 Penetration Testing Professional red , lab	1	299	January 25, 2022
Black box 2 proxychains step Penetration Testing Student (SP) red , ine , lab	0	228	July 13, 2022
Blackbox pentest 2 Penetration Testing Student (SP) red , lab , cybersec	2	297	April 29, 2022
From XSS to Domain Admin - PTP Lab Penetration Testing Professional red , ine , security , lab , cybersec	0	309	March 23, 2022
Running nmap NSE scan through socks proxy Penetration Testing Professional red	3	321	September 23, 2021

Client-side Exploitation Lab: proxychains fails

Related Topics