dark_pyrro Posted March 9, 2022 Posted March 9, 2022 What results did you get from my other suggestions in my post above?
Jayel Posted March 9, 2022 Author Posted March 9, 2022 I've reviewed the firewall settings on my VPS and they're all good. I use Kali for SSH into SJ so no ufw. Also (with the C2 server running) I executed: ssh -lwhatever 52.xx.xx.xx -p 2022 and ssh whatever@52.xx.xx.xx -p 2022 ┌──(test㉿test)-[~] └─$ ssh -lwhatever 52.xx.xx.xx -p 2022 255 ⨯ whatever@52.xx.xx.xx: Permission denied (publickey). ┌──(test㉿test)-[~] └─$ ssh whatever@52.xx.xx.xx -p 2022 255 ⨯ whatever@52.xx.xx.xx: Permission denied (publickey). I haven't tried wireshark as I don't really know how to use it. Initially I tried setting up the C2 server locally but I couldn't get it to work hence the reason why I chose to follow darren's instructions and host it on AWS VPC. I also tried to follow this video but hit a road block and couldn't get it to work. https://www.youtube.com/watch?v=vPo6bnxIiC4 Out of curiosity, do I need to be on the same IP range as SJ 172.16.24.1? So something like 172.16.24.x Currently my IP on Kali is something different 192.168.xxx.xxx
dark_pyrro Posted March 9, 2022 Posted March 9, 2022 So, your ssh attempts tells that something is answering in the other end The ufw part is not Shark related, it's the OS you are running on your VPS that needs to be checked (also, you have been successful in hiding your public VPS IP address this far, you might want to edit your post to keep it a secret.....)
Jayel Posted March 9, 2022 Author Posted March 9, 2022 cool thx for that, this is the output from my AWS lightsail VPS server that's running on Ubuntu by default. ubuntu@ip-172-26-x-xxx:~$ sudo ufw status Status: inactive
Recommended Posts
Archived
This topic is now archived and is closed to further replies.