hacktricks/network-services-pentesting/1080-pentesting-socks.md

# 1080 - Pentesting Socks

{% hint style="success" %}
Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)

<details>

<summary>Support HackTricks</summary>

* Check the [**subscription plans**](https://github.com/sponsors/carlospolop)!
* **Join the** 💬 [**Discord group**](https://discord.gg/hRep4RUj7f) or the [**telegram group**](https://t.me/peass) or **follow** us on **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
* **Share hacking tricks by submitting PRs to the** [**HackTricks**](https://github.com/carlospolop/hacktricks) and [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repos.

</details>
{% endhint %}

## Informations de base

**SOCKS** est un protocole utilisé pour transférer des données entre un client et un serveur via un proxy. La cinquième version, **SOCKS5**, ajoute une fonctionnalité d'authentification optionnelle, permettant uniquement aux utilisateurs autorisés d'accéder au serveur. Il gère principalement le proxy des connexions TCP et le transfert des paquets UDP, fonctionnant au niveau de session (Niveau 5) du modèle OSI.

**Port par défaut :** 1080

## Énumération

### Vérification de l'authentification
```bash
nmap -p 1080 <ip> --script socks-auth-info
```
### Brute Force

#### Utilisation de base
```bash
nmap --script socks-brute -p 1080 <ip>
```
#### Utilisation avancée
```bash
nmap  --script socks-brute --script-args userdb=users.txt,passdb=rockyou.txt,unpwdb.timelimit=30m -p 1080 <ip>
```
#### Sortie
```
PORT     STATE SERVICE
1080/tcp open  socks
| socks-brute:
|   Accounts
|     patrik:12345 - Valid credentials
|   Statistics
|_    Performed 1921 guesses in 6 seconds, average tps: 320
```
## Tunneling et redirection de port

### Utilisation de base de proxychains

Configurer proxy chains pour utiliser un proxy socks
```
nano /etc/proxychains4.conf
```
Editer le bas et ajouter votre proxy
```
socks5 10.10.10.10 1080
```
Avec authentification
```
socks5 10.10.10.10 1080 username password
```
#### Plus d'infos : [Tunneling and Port Forwarding](../generic-methodologies-and-resources/tunneling-and-port-forwarding.md)

{% hint style="success" %}
Apprenez et pratiquez le hacking AWS :<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[**HackTricks Training AWS Red Team Expert (ARTE)**](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\
Apprenez et pratiquez le hacking GCP : <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[**HackTricks Training GCP Red Team Expert (GRTE)**<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)

<details>

<summary>Soutenir HackTricks</summary>

* Consultez les [**plans d'abonnement**](https://github.com/sponsors/carlospolop) !
* **Rejoignez le** 💬 [**groupe Discord**](https://discord.gg/hRep4RUj7f) ou le [**groupe telegram**](https://t.me/peass) ou **suivez** nous sur **Twitter** 🐦 [**@hacktricks\_live**](https://twitter.com/hacktricks\_live)**.**
* **Partagez des astuces de hacking en soumettant des PRs aux** [**HackTricks**](https://github.com/carlospolop/hacktricks) et [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) dépôts github.

</details>
{% endhint %}
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`# 1080 - Pentesting Socks`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`{% hint style="success" %}`
			`Learn & practice AWS Hacking:<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[HackTricks Training AWS Red Team Expert (ARTE)](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\`
			`Learn & practice GCP Hacking: <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[HackTricks Training GCP Red Team Expert (GRTE)<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`<details>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`<summary>Support HackTricks</summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`* Check the [subscription plans](https://github.com/sponsors/carlospolop)!`
			`* Join the 💬 [Discord group](https://discord.gg/hRep4RUj7f) or the [telegram group](https://t.me/peass) or follow us on Twitter 🐦 [@hacktricks\_live](https://twitter.com/hacktricks\_live).`
			`* Share hacking tricks by submitting PRs to the [HackTricks](https://github.com/carlospolop/hacktricks) and [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github repos.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`{% endhint %}`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`## Informations de base`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`SOCKS est un protocole utilisé pour transférer des données entre un client et un serveur via un proxy. La cinquième version, SOCKS5, ajoute une fonctionnalité d'authentification optionnelle, permettant uniquement aux utilisateurs autorisés d'accéder au serveur. Il gère principalement le proxy des connexions TCP et le transfert des paquets UDP, fonctionnant au niveau de session (Niveau 5) du modèle OSI.`
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`Port par défaut : 1080`
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00
Translated to French 2023-06-03 13:10:46 +00:00			`## Énumération`
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`### Vérification de l'authentification`
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00			```bash
			`nmap -p 1080 <ip> --script socks-auth-info`
			```
GitBook: [#3160] No subject 2022-05-01 13:25:53 +00:00			`### Brute Force`
GitBook: [master] 5 pages and 10 assets modified 2021-05-25 22:52:07 +00:00
Translated to French 2023-06-03 13:10:46 +00:00			`#### Utilisation de base`
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00			```bash
			`nmap --script socks-brute -p 1080 <ip>`
			```
Translated to French 2023-06-03 13:10:46 +00:00			`#### Utilisation avancée`
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00			```bash
			`nmap --script socks-brute --script-args userdb=users.txt,passdb=rockyou.txt,unpwdb.timelimit=30m -p 1080 <ip>`
			```
Translated to French 2023-06-03 13:10:46 +00:00			`#### Sortie`
GitBook: [#3160] No subject 2022-05-01 13:25:53 +00:00			```
Updated some errors updated file name to lowercase, added in output 2021-05-14 00:14:06 +00:00			`PORT STATE SERVICE`
			`1080/tcp open socks`
			`\| socks-brute:`
			`\| Accounts`
			`\| patrik:12345 - Valid credentials`
			`\| Statistics`
			`\|_ Performed 1921 guesses in 6 seconds, average tps: 320`
			```
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`## Tunneling et redirection de port`
Updated some errors updated file name to lowercase, added in output 2021-05-14 00:14:06 +00:00
Translated to French 2023-06-03 13:10:46 +00:00			`### Utilisation de base de proxychains`
GitBook: [master] 5 pages and 10 assets modified 2021-05-25 22:52:07 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`Configurer proxy chains pour utiliser un proxy socks`
GitBook: [#3160] No subject 2022-05-01 13:25:53 +00:00			```
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00			`nano /etc/proxychains4.conf`
			```
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`Editer le bas et ajouter votre proxy`
GitBook: [#3160] No subject 2022-05-01 13:25:53 +00:00			```
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00			`socks5 10.10.10.10 1080`
			```
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`Avec authentification`
GitBook: [#3160] No subject 2022-05-01 13:25:53 +00:00			```
Created 1080 I tried to keep to your format and style for the document. very sorry if this is not fully correct. Thank you again for all of your hardwork! 2021-05-14 00:08:24 +00:00			`socks5 10.10.10.10 1080 username password`
			```
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`#### Plus d'infos : [Tunneling and Port Forwarding](../generic-methodologies-and-resources/tunneling-and-port-forwarding.md)`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`{% hint style="success" %}`
			`Apprenez et pratiquez le hacking AWS :<img src="/.gitbook/assets/arte.png" alt="" data-size="line">[HackTricks Training AWS Red Team Expert (ARTE)](https://training.hacktricks.xyz/courses/arte)<img src="/.gitbook/assets/arte.png" alt="" data-size="line">\`
			`Apprenez et pratiquez le hacking GCP : <img src="/.gitbook/assets/grte.png" alt="" data-size="line">[HackTricks Training GCP Red Team Expert (GRTE)<img src="/.gitbook/assets/grte.png" alt="" data-size="line">](https://training.hacktricks.xyz/courses/grte)`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`<details>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`<summary>Soutenir HackTricks</summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`* Consultez les [plans d'abonnement](https://github.com/sponsors/carlospolop) !`
			`* Rejoignez le 💬 [groupe Discord](https://discord.gg/hRep4RUj7f) ou le [groupe telegram](https://t.me/peass) ou suivez nous sur Twitter 🐦 [@hacktricks\_live](https://twitter.com/hacktricks\_live).`
			`* Partagez des astuces de hacking en soumettant des PRs aux [HackTricks](https://github.com/carlospolop/hacktricks) et [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) dépôts github.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`
Translated ['macos-hardening/macos-security-and-privilege-escalation/mac 2024-07-19 05:23:41 +00:00			`{% endhint %}`