search
githubEdit

SocksOverRDP

hashtag
Binaries

  • https://github.com/nccgroup/SocksOverRDP/releases

  • https://www.proxifier.com/download/#win-tab

hashtag
Setup

  • Copy SocksOverRDP.zip to target and unzip

  • Loading SocksOverRDP.dll using regsvr32.exe

  • As Admin & Disable Realtime Protection

Set-MpPreference -DisableRealtimeMonitoring $true
regsvr32.exe SocksOverRDP-Plugin.dll

hashtag
Run RDP and Enter Target IP

mstsc.exe

  • Will get prompt - enter creds

  • Transfer SocksOverRDP-Server.exe to target

hashtag
Confirming the SOCKS Listener is Started on Pivot

netstat -antb | findstr 1080

hashtag
Transfer Proxifier to Pivot Host

  • Configure Proxifier

PreviousLigolo-ngNextDNScat

Last updated