updatesvc Posted January 30, 2016 Share Posted January 30, 2016 I am a kind of a noob on this one. I have this question. I share internet through tethering using my phone which is connected through the internet through the 3G network. I dont have any other way of accessing the internet, so no cable or wired connections. In the options for setting up an exploit in metasploit the LHOST option will not work if I set my public ip. This is because my ISP filters all incoming requests on all ports (The router is located at their site, no access).I would like to know if their is a way I could work around this, prefarably a free method.I already know I can use a VPS (Virtual Private Server) but thats expensive. Possible noobie solutions:proxies,VPNs.If this is a solution I would like to know how to setup the LPORT and LHOST. I am sorry if this has a simple answer. Environment: Kali linux version on VMware workstation--->Hosted on a windows machine Please help Quote Link to comment Share on other sites More sharing options...
Foxtrot Posted January 30, 2016 Share Posted January 30, 2016 The LHOST and LPORT are Local Host and Local Port, so your IP would be 192.168.x.x, or such for your network. (In my opinion). I'm pretty new to metasploit too, but maybe that will work. Quote Link to comment Share on other sites More sharing options...
updatesvc Posted January 31, 2016 Author Share Posted January 31, 2016 That didn't or won't work because the 192.168.x.x network is for the local network for me that is the network between my phone to my computer(Tether network).Thanks for trying. I am also looking for ways to unblock port which are blocked by default. Quote Link to comment Share on other sites More sharing options...
updatesvc Posted January 31, 2016 Author Share Posted January 31, 2016 I am also looking into blocked ports work around solutions, if any you now of a good one let me know. Quote Link to comment Share on other sites More sharing options...
phpsystems Posted February 1, 2016 Share Posted February 1, 2016 The first thing you should know, is that 3G networks are usually natted. This does mean that running services from behind the nat is going to be difficult. Can you determine your actual IP on the 3G network and your remote IP? Are they different? You might be best off with a VPS or VPN to provide a static IP / Port that you run the listener on, or at least port forward (eg, via SSH). Tim Quote Link to comment Share on other sites More sharing options...
updatesvc Posted February 1, 2016 Author Share Posted February 1, 2016 I am not quite sure what "actual IP" or "remote IP" means, but doing a google search for my Ip address I get this 154.122.xxx.xxx (I am guessing this is my remote ip) that same IP is what I get running an network analyzer tool on my android.When running trace route (on google.com) commands something different happens 1st hop ***10.36.xxx.xxx I guess this one is my isp router 2nd hop ***10.36.xxx.xxx I guess this one is another my isp router 3rd hop ***212.49.xxx.xxx this one shows my isp domain name 4th hop ***10.xxx.xxx.xxx -----some other more gateways BTW I tried accessing the router pages no luck. phpsystems:do you have any references or walkthrough guides for VPNs or SSH tunnelling to listen to a port. Quote Link to comment Share on other sites More sharing options...
phpsystems Posted February 1, 2016 Share Posted February 1, 2016 By Actual Address, I meant the IP that your 3G provider assigned to you. By remote IP, I meant the address you see when you go to something like whatismyip.com. Nat is the translation from one to the other.Port forwarding via ssh is straight forward, You just need the -R option eg, if you vpn is on 2.2.2.2 and you want the listener on port 2345, you could it up via:ssh -R 127.1.1.1:2345:2.2.2.2:2345 user@2.2.2.2Then metasploit would be listening on 127.1.1.1 (LHOST) port 2345 (LPORT), and the payload would be talking to 2.2.2.2 port 2345This might help: https://www.youtube.com/watch?v=PQY8eTzMiHM Quote Link to comment Share on other sites More sharing options...
updatesvc Posted February 1, 2016 Author Share Posted February 1, 2016 Thanks phpsytems, for sharing I will try that : watching the video now Here is a small snip from ipconfig /all command when using a 3g USB dongle Connection-specific DNS Suffix . : Description . . . . . . . . . . . : HUAWEI Mobile Connect - Network Adapter #2 Physical Address. . . . . . . . . : 58-2C-80-13-92-XX DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::8c28:ca02:bfe3:648c%5(Preferred) IPv4 Address. . . . . . . . . . . : 154.122.xxx.71(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.240 Lease Obtained. . . . . . . . . . : Saturday, January 30, 2016 11:19:06 AM Lease Expires . . . . . . . . . . : Friday, February 5, 2016 11:19:07 AM Default Gateway . . . . . . . . . : 212.49.xxx.22 154.122.xxx.65 DHCP Server . . . . . . . . . . . : 154.122.xxx.65 DHCPv6 IAID . . . . . . . . . . . : 794307712 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1E-3D-7B-3D-58-2C-80-11-91-08 DNS Servers . . . . . . . . . . . : 212.49.xxx.22 196.202.xxx.45 At the time my IP whatismyip.com was 154.122.xxx.65 the same as my (DHCP server and Gateway) but different from my IPv4 address I will check back , and inform you if the ssh solution worked. Quote Link to comment Share on other sites More sharing options...
updatesvc Posted February 2, 2016 Author Share Posted February 2, 2016 (edited) Thaaaaaaaaaaaanks so much phpsystems, you are a life saver.ssh remote tunneling helped I didn't know you could use it to do so many things. Edited February 2, 2016 by updatesvc Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.