var unreadAlerts = '1';
You have one unread private message from dkota titled Welcome to the Forum!

Playing with onworks.net
#1
 
Hi!
I was playing with onworks.net, a site that host free VPS linux distro for a small amount of time, since we have root access I tried to make the server accept a connection from outside I used ufw rules. By doing
Code:
curl ifconfig.me
I got the server IP and, to a open a port I simply run netcat and added ufw rule:
Code:
ufw allow 4448/tcp && nc -nlvp 4448
When I try to conntect with my computer
Code:
nc <serverip> 4448
There is no connections from the server, it just still listening.
I checked with
Code:
ufw status
rules have been added and same with
Code:
iptables -L
It says that we can connect on port 4448 from everywhere (source and destination everywhere).
Now at this point I run nmap on the server port I supposedly opened it says FILTERED.
Can someone teach me what kind of firewall is there??
https://onworks.net For people who want to try, the first one that achieve this and tell how he did get 1 free PC from my logs.


Xprogrammer.
We are Light Hat Arsenal, we are hackers for the light !
Report
#2
Could be a hardware/router firewall that only allows incoming SSH connections and drops the rest

Have you tried making the server connect to you instead of you connecting to the server and get reverse shell that way?
Reply Quote // Report
#3
dkota Wrote: Could be a hardware/router firewall that only allows incoming SSH connections and drops the rest

Have you tried making the server connect to you instead of you connecting to the server and get reverse shell that way?

Right why you don't make a reverse shell and best on port 80 or 443 this ones most open for outgoing connections
You search a DB? Send a PM maybe i have it.
Reply Quote // Report
#4
dkota Wrote: Could be a hardware/router firewall that only allows incoming SSH connections and drops the rest

Have you tried making the server connect to you instead of you connecting to the server and get reverse shell that way?


Well no for opsec reasons because I don't want to turn my computer into a server. Btw does are just VM running online. I just tried connecting 2 onworks VM together didn't work.
2 PCs FROM MY LOGS FOR THE ONE THAT FIND THE WAY TO ACHIEVE THIS
We are Light Hat Arsenal, we are hackers for the light !
Reply Quote // Report
#5
Xprogrammer Wrote:
dkota Wrote: Could be a hardware/router firewall that only allows incoming SSH connections and drops the rest

Have you tried making the server connect to you instead of you connecting to the server and get reverse shell that way?


Well no for opsec reasons because I don't want to turn my computer into a server. Btw does are just VM running online. I just tried connecting 2 onworks VM together didn't work.
2 PCs FROM MY LOGS FOR THE ONE THAT FIND THE WAY TO ACHIEVE THIS

Alright, just to keep things clear I am helping you because I feel like it, I don't want your 2 PCs. However, why not use one of your "PCs" to turn into a server and achieve this?
Reply Quote // Report
#6
Xprogrammer Wrote:
dkota Wrote: Could be a hardware/router firewall that only allows incoming SSH connections and drops the rest

Have you tried making the server connect to you instead of you connecting to the server and get reverse shell that way?


Well no for opsec reasons because I don't want to turn my computer into a server. Btw does are just VM running online. I just tried connecting 2 onworks VM together didn't work.
2 PCs FROM MY LOGS FOR THE ONE THAT FIND THE WAY TO ACHIEVE THIS

You can use a tool like ngrok if you don't have any ano VPS. And you don't need to turn your pc in a server lol you only need 1 service on a port. There are many ways to solve this.
For sure you can't connect 2 onworks VMs together
I reply only to help i don't want your PCs.
You search a DB? Send a PM maybe i have it.
Reply Quote // Report
#7
DataBroker Wrote:
dkota Wrote: Could be a hardware/router firewall that only allows incoming SSH connections and drops the rest

Have you tried making the server connect to you instead of you connecting to the server and get reverse shell that way?

Right why you don't make a reverse shell and best on port 80 or 443 this ones most open for outgoing connections


Cuz 443 are already in use but let me try 80... Fun fact never used TCP on non TCP dedicated port.

DataBroker Wrote:
Xprogrammer Wrote:
dkota Wrote: Could be a hardware/router firewall that only allows incoming SSH connections and drops the rest

Have you tried making the server connect to you instead of you connecting to the server and get reverse shell that way?


Well no for opsec reasons because I don't want to turn my computer into a server. Btw does are just VM running online. I just tried connecting 2 onworks VM together didn't work.
2 PCs FROM MY LOGS FOR THE ONE THAT FIND THE WAY TO ACHIEVE THIS

You can use a tool like ngrok if you don't have any ano VPS. And you don't need to turn your pc in a server lol you only need 1 service on a port. There are many ways to solve this.
For sure you can't connect 2 onworks VMs together
I reply only to help i don't want your PCs.

True I'm kinda stupid.

dkota Wrote:
Xprogrammer Wrote:
dkota Wrote: Could be a hardware/router firewall that only allows incoming SSH connections and drops the rest

Have you tried making the server connect to you instead of you connecting to the server and get reverse shell that way?


Well no for opsec reasons because I don't want to turn my computer into a server. Btw does are just VM running online. I just tried connecting 2 onworks VM together didn't work.
2 PCs FROM MY LOGS FOR THE ONE THAT FIND THE WAY TO ACHIEVE THIS

Alright, just to keep things clear I am helping you because I feel like it, I don't want your 2 PCs. However, why not use one of your "PCs" to turn into a server and achieve this?

I know you don't want them.... The PC I'm selling aren't botnet but LOGS from PC. I just put that for people interested in logs cuz I'm actually doing a project with onworks and I really need that.
We are Light Hat Arsenal, we are hackers for the light !
Reply Quote // Report


Quick Reply
Message
Type your reply to this message here.





Users browsing this thread: purely_cabbage
var thread_deleted = "0"; if(thread_deleted == "1") { $("#quick_reply_form, .new_reply_button, .thread_tools, .inline_rating").hide(); $("#moderator_options_selector option.option_mirage").attr("disabled","disabled"); }