Skip to content

Agent Side Proxy and Port Mapping

Jump to bottom Edit New page
Jing Mi edited this page Jun 5, 2023 · 3 revisions

Socks5 Proxy Server

How it works

Launch a SOCKS5 proxy server with random username/password on agent side, then map its port back to CC. Assuming your CC can be reached via IP address 1.2.3.4, the resulting proxy config URL will be socks5://username:[email protected]:port. You can use this proxy to access network resources on agent side.

How to use it

Type use run_proxy, set the port as you like (for example 8080), then run, you will see username/password sent back to you by agent, now you can use the proxy as socks5://username:[email protected]:8080.

Note that if DoH is enabled, agent side SOCKS5 server will use it to resolve names.

TCP/UDP port forwarding/mapping

Map agent side port to C2 side

Type use port_fwd, set protocol to tcp or udp (NOTE udp is currently not supported for reverse port mapping), and set your destination address (ip:port), then specify a port that emp3r0r listens to (on localhost).

Map C2 side port to agent side

set switch reverse to change the direction, then configure other options.

Add a custom footer
Add a custom sidebar
Clone this wiki locally