The Life of a Penetration Tester_ Using Tor and Privoxy on Kali _ Debian _ Backtrack Linux to Anonymize Internet Surfing or Open Blocked Websites
Post on 19-Dec-2015
15 Views
Preview:
DESCRIPTION
Transcript
04/03/2015 TheLifeofaPenetrationTester:UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites
http://lifeofpentester.blogspot.in/2013/04/usingtorandprivoxyonkalidebian.html 1/7
SecurityJournal
TheLifeofaPenetrationTester
Home Publications Aboutme
S u n d a y , A p r i l 7 , 2 0 1 3
UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites
Writtenby:PranshuBajpai|FindPranshuonGoogle+AndLinkedIn
Freedomofexpressionandspeechisyourfundamentalrightandiftheytrytotakethatawayfromyoubyblockingaccesstospecificwebsites,thenthetoolsmentionedinthispostwillaidyouindefeatingcensorship.
TheyrecentlyblockedwebsiteslikeHackThisSiteonthenetworkthatIuse,categorizingthemas"Hacking".TheirintentionsaregoodI'msurebutIneedtovisitsuchwebsites.
Anyway,Idecidedtouseaproxywebsite(whichisnotalwaysreliablesincetheywillblockaccesstothoseaswell).AsIsuspected,itwasblockedunder'ProxyAvoidance'.
SubscribeTo
Posts
Comments
Follow@pranshubajpai89
UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymize
InternetSurfingorOpenBlockedWebsitesWrittenby:PranshuBajpai|FindPranshuonGoogle+AndLinkedInFreedomofexpressionandspeechisyourfundamentalrightandifthe...
InstallingNessusinKaliLinuxInstalledthenewKaliPenTestingLinuxtoday.
HoweverIwasdisappointedtoseenoNessusVul.Scanner.Triedtoinstallitby'ap...
IndexPage'/'
HowToHackAWebsiteSimpleDemo|KaliLinux/BackTrack|
PranshuWrittenby:PranshuBajpai|FindPranshuonGoogle+AndLinkedInIwastestingforSQLvulnerabilitiesatrandomovertheInternetand...
HackingNeighbour'sWifi(Password)|HackingNeighbor's
Wireless(Internet)|StepbyStepHowToWrittenbyPranshuBajpai|JoinmeonGoogle+|LinkedInDisclaimer:Foreducationalpurposesonly:Thisismeantmerelyto
MostPopular
More NextBlog CreateBlog SignIn
04/03/2015 TheLifeofaPenetrationTester:UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites
http://lifeofpentester.blogspot.in/2013/04/usingtorandprivoxyonkalidebian.html 2/7
Setuptheonionroutertogetaroundthis.First,youneedtoinstallitonyourboxusingthefollowingcommand:
#aptgetinstalltorprivoxy
Thiswillinstall2separatepackages'Tor'and'Privoxy'.
Torwillhostaproxyserveronyourmachineonport9050oftype'Socks5'
Privoxywillhostaproxyserviceonyourmachineonport8118oftype'HTTP'
AlsoinstalltheGUIfortorcalled'vidalia'
#aptgetinstallvidaliapolipo
Now,editthePrivoxyconfigurationfile:
#vi/etc/privoxy/config
Addthislineatthebottomofthisfile:
forwardsocks4a/localhost:9050.
Saveandclosethefile.ThiswilltellprivoxytoforwardSockstraffictotheServicerunningonport9050onyourlocalhost(thisserviceisTor)
TimetofireupTorandprivoxyservices:
#/etc/init.d/torstart#/etc/init.d/privoxystart
NowgotoApplication>Internet>Vidalia
Checkthatitsays'connectedtotornetwork'
Youcanclickon'viewthenetwork'toseealltherelaysthatyouarepassingthrough.
Nowgotoyourbrowserandsettheproxyto:
ProxyIP'127.0.0.1'Proxyport9050TypeSocks5
exhibit...
MultipleScreensin(Kali)Linux|HowTo
USDtoINRExchangeRateCalculator(Xoom,PayPal)ScriptinPython
PhDComicsDownloader|PythonScripttoDownloadPiledHigherandDeeperComics
HowtoUseTruecrypt|TruecryptTutorial[Screenshots]|KaliLinux,BackTrack,BackBox,Windows
FOCAMetadataAnalysisTool
Aboutme
PublicationsPranshuBajpai
AffineCipherEncryptionDecryptionSourcecodeinJava
VignereCipherEncryptionDecryptionSourcecodeinJava
OneTimePadEncryptionDecryptionSourcecodeinJava
Recent
PranshuBajpai
SecurityResearcher
Viewmycompleteprofile
#whoami
Search
Search
Academic(1)Android(1)Backtrack(24)Cryptography(8)ExploitResearch(1)GeneralProgramming(1)Hacking(31)Java(12)KaliLinux(34)Linux(10)ListsOfBest..(3)MalwareAnalysis(1)metasploit(5)misc(4)Mutillidae(4)MyPythonScripts(4)mysql(1)screencast(1)SSH(1)Tomcat(2)WebApplicationsHacking(6)
Labels
04/03/2015 TheLifeofaPenetrationTester:UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites
http://lifeofpentester.blogspot.in/2013/04/usingtorandprivoxyonkalidebian.html 3/7
PostedbyPranshuBajpai
Labels:Backtrack,Hacking,KaliLinux
Note:IfyouareusingtheFireFoxorIceweaselbrowser,youcanuse'AutoProxy'addontosetthisup.
Reloadthewebsitethatwasblockedearlier,ifyou'vedoneitright,youshouldhaveaccesstoit.
Furthermore,allyourbrowsingisnowanonymoussinceyouareconnectedthroughtheonionrouter.
+3 Recommend this on Google
35comments:
Windows(2)WirelessHacking(3)
DoNotCopy
495,018Pageviews
04/03/2015 TheLifeofaPenetrationTester:UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites
http://lifeofpentester.blogspot.in/2013/04/usingtorandprivoxyonkalidebian.html 4/7
Anonymous April14,2013at7:52AM
Thankyouverymuch!
Reply
Anonymous April23,2013at5:33PM
THANKS!!!!!
Reply
Avadhoot April27,2013at11:35PM
Thanksforthispost
Reply
Anonymous May1,2013at12:45PM
Reply
Thiscommenthasbeenremovedbyablogadministrator.
Anonymous May14,2013at8:23PM
Reply
Thiscommenthasbeenremovedbyablogadministrator.
Anonymous May20,2013at7:38PM
Reply
Thiscommenthasbeenremovedbyablogadministrator.
Anonymous May21,2013at9:02PM
Excellentpost!!!Workslikeachamp
Reply
JosNinguem May22,2013at2:03AM
workslikeacharm.thanks=)
Reply
Anonymous May23,2013at9:40PM
Reply
Thiscommenthasbeenremovedbyablogadministrator.
Anonymous May25,2013at3:01PM
ThanksEverythingworksgoodEgoDust
Reply
Anonymous May31,2013at8:41AM
This isagreatposthowever Iama littleconfusedonwhyweneedprivoxy,as fromwhat Icantellthewebbrowserconnectsdirectlytotoronport9050ratherthan8118whichisusedbyprivoxysowhydoesitneedtobeinstalledandrunningisitdoingsomethingextrainthebackground?
Reply
04/03/2015 TheLifeofaPenetrationTester:UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites
http://lifeofpentester.blogspot.in/2013/04/usingtorandprivoxyonkalidebian.html 5/7
Replies
Reply
Anonymous June24,2013at7:23AM
You'reright.It'sbypassingprivoxy.Themainreasontohaveprivoxyisbecausetorwill leakdns information if runningasanhttpproxy.Privoxy is the fix for that,hedoneitwrong.
Anonymous June1,2013at2:20PM
Reply
Thiscommenthasbeenremovedbyablogadministrator.
Anonymous June4,2013at5:33AM
Thanksmate..verygoodpost!!
Reply
Anonymous June12,2013at3:58AM
Hi,excellentpost,ihaveaquestion.Inproxysettings,yousettorport9050directly.Thisway,privoxyiscompletelyleftout.I'mworkingonasimilarsetuponKali,andi'mlookingatprivoxylog. If i use tor port 9050, privoxy log is silent (onmax debug), tor activity via arm showsnetworkgraph,sitesareloading.If ispecifyprivoxy,ondefault8118port, iseeconnectionsopenand timeoutonprivoxy log,no toractivity,andsitesnever load. I trywith twoconfigs,privoxyforwardingtotor,andprivoxystandalone.Myconclusionisthatyouhaveleftprivoxyoutofyourconfig.Meaning,youleakheaderdataoutside...
Reply
Anonymous June16,2013at12:32AM
Reply
Thiscommenthasbeenremovedbyablogadministrator.
Anonymous June17,2013at9:22AM
tor is my but real ip is not chagimg.i use auto proxy setting but ,when I tried to watchwww.whatismyipaddress.com.thenmyipaddisnotchanged
Reply
Anonymous June18,2013at2:37AM
Reply
Thiscommenthasbeenremovedbyablogadministrator.
ketangsang July1,2013at3:04AM
Reply
Thiscommenthasbeenremovedbyablogadministrator.
Anonymous July18,2013at2:50AM
Is vidalia hidewholemachine ip? If i use sqlmap thenwhat to do to protectme not to betraced
Reply
Anonymous August17,2013at9:55PM
04/03/2015 TheLifeofaPenetrationTester:UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites
http://lifeofpentester.blogspot.in/2013/04/usingtorandprivoxyonkalidebian.html 6/7
Replies
Reply
Replies
Reply
Replies
Reply
I see no reason to also install polipo in this szenario. Why would you want two proxiesinstalled?
Reply
Anonymous August17,2013at11:31PM
IsyoursettingsforTorisachainedproxysetup?Orelse,thetracemightstilltrackable.
Reply
Anonymous December25,2013at5:56AM
WTF?
Anonymous October10,2013at2:38PM
Forattackthisnotverygood.
Reply
PranshuBajpai October10,2013at10:46PM
huh?
ZacManns November6,2013at9:12AM
Reply
Thiscommenthasbeenremovedbytheauthor.
Anonymous November10,2013at8:28PM
I cant save "forwardsocks4a/localhost:9050" on terminal. after edit i press ctrl+x its notworking,sothereisnosavingoption.Help...
Reply
Anonymous December6,2013at6:49PM
aftertypingthatpressesckeyandthentypewqandenter
Anonymous November15,2013at9:28PM
Browsershouldbeconfiguredthrough8118.Ifit'sconfiguredthrough9050,you'rebypassingprivoxyandjustgoingthroughTOR,whichcanleaktimezoneinformation.
Reply
Anonymous November28,2013at6:02AM
gettingerror...needhelp
Reply
Anonymous December4,2013at9:10AM
04/03/2015 TheLifeofaPenetrationTester:UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites
http://lifeofpentester.blogspot.in/2013/04/usingtorandprivoxyonkalidebian.html 7/7
NewerPost OlderPostHome
Subscribeto:PostComments(Atom)
Enteryourcomment...
Commentas: GoogleAccount
Publish Preview
heybroIhaveonedoubtwhatistheextensionofkalilinuxsoftwares
Reply
Anonymous December25,2013at5:59AM
Thankyou!itworks!!
Reply
sonimehar February15,2014at2:36PM
helpmeplzzz
Reply
MusaIrfan February16,2014at8:50AM
KaliLinuxProblem:(CanAnyonehelpme
Reply
abdul January19,2015at9:03AM
I have a questionwhich is confusingme, i applied every step in this tutorial, but after thiswhenicheckedmyIPon"WhatisMyIP"itwassameasbefore
Reply
PranshuBajpai2013AllRightsReserved.Simpletemplate.PoweredbyBlogger.
top related