Pivoting is a technique used to route traffic through a compromised machine to reach an otherwise inaccessible network. This is useful for post-exploitation, enumeration, and lateral movement.
ssh -i pivot [email protected]
-i: Identity file (private key used for authentication)10.10.155.5 but not 10.10.10.510.10.10.5 through 10.10.155.5ProxyChains allows tunneling network traffic through an SSH connection, enabling tools like nmap, xfreerdp, and firefox to work through the pivoted machine.
Open and edit the ProxyChains configuration file:
sudo nano /etc/proxychains4.conf
Find the following line at the bottom:
socks4 127.0.0.1 9050
socks4 → The type of proxy being used (SOCKS4 protocol).127.0.0.1 → The proxy is running locally on your machine (localhost).9050 → The port where the proxy is listening.This tells ProxyChains to route all connections through a SOCKS4 proxy running on localhost (127.0.0.1) at port 9050.
By default, Tor uses this port for SOCKS proxying, but in your case, it is likely used for SSH dynamic port forwarding (ssh -D 9050), creating a pivot point into another network.