08-03-2025, 02:02 AM
Gotta a questions about proxychains and Nmap...
Okay, I was / am doing a pentest and I want to ensure proper opsec. I have a jumpbox set up that I can use for routing my traffic to it.
Host -> Jumpbox -> target
However I noticed when I ran an Nmap scan with proxychains, I saw that my traffic wasn't routing through the proxy. Proxychains4.conf is configured correctly with the socks5 options enabled at the bottom and I also have this ssh daemon on my end.
This is the command I ran for the ssh daemon or whatever its called.
ssh -f -N -D 9050 -i /path/to/key user@jumpbox
When I run proxychains which is configured to run with localhost port 9050 (Tor default) my Nmap scans don't route through the host, it goes straight to the target. I have tried this method with Tor enabled and I see through Wireshark that my IP is going directly to the tagret compromising my opsec.
Other commands like proxychains4 curl ifconfig.so run fine and should my traffic routing through the proxy. By the fuck does Nmap not??? Can anyone give me some advice or what I should do to fix. Or do I just use Ligolo-ng or hack from the server itself.
Thank you -- Datah8ter
Okay, I was / am doing a pentest and I want to ensure proper opsec. I have a jumpbox set up that I can use for routing my traffic to it.
Host -> Jumpbox -> target
However I noticed when I ran an Nmap scan with proxychains, I saw that my traffic wasn't routing through the proxy. Proxychains4.conf is configured correctly with the socks5 options enabled at the bottom and I also have this ssh daemon on my end.
This is the command I ran for the ssh daemon or whatever its called.
ssh -f -N -D 9050 -i /path/to/key user@jumpbox
When I run proxychains which is configured to run with localhost port 9050 (Tor default) my Nmap scans don't route through the host, it goes straight to the target. I have tried this method with Tor enabled and I see through Wireshark that my IP is going directly to the tagret compromising my opsec.
Other commands like proxychains4 curl ifconfig.so run fine and should my traffic routing through the proxy. By the fuck does Nmap not??? Can anyone give me some advice or what I should do to fix. Or do I just use Ligolo-ng or hack from the server itself.
Thank you -- Datah8ter