Government Security
Network Security Resources

Jump to content

Photo

Port Forward Ports Without Access To Router?

router
  • Please log in to reply
15 replies to this topic

#1 informatech

informatech

    Private First Class

  • Members
  • 52 posts

Posted 06 August 2006 - 05:45 PM

is there any way possible to port forward ports when you don't have access to the router. lets say you want to use bittorrent at school but its soo slow and you need to port forward. what do you do in this case since you dont have access to a router. can u tunnel your way out or what. I ahve no ideas and i searched everywhere including wikipedia and google. no other forums have any answers. what about you guys??
NO IMAGES IN SIGNATURE!

#2 BBQ CD

BBQ CD

    Private First Class

  • Members
  • 59 posts

Posted 06 August 2006 - 11:19 PM

the amount of available ports for connections does have nothing to do with the "Speed" of downloading/uploading.

You can have a donwload/upload on just one port with the maximum speed your NIC is able to give... This is how TCP/IP works.

The amount of ports is only relevant for Filesharing/P2P software as it connects to many sources on different ports which then increase the bandwith your downloading/uploading with.

To your initial question: From my understanding you cant forward ports without having access to the router itself. Tunneling would use existing portforwarding to your computer.

Correct me if I am wrong...

#3 Fireice

Fireice

    Staff Sergeant

  • Members
  • 283 posts

Posted 07 August 2006 - 03:45 AM

No, you can't unless you use UDP hole punching (google). I don't think any p2p client will support it because they all use TCP for transfer.

#4 informatech

informatech

    Private First Class

  • Members
  • 52 posts

Posted 07 August 2006 - 04:22 AM

ok forget p2p software or bittorrent. how about reverse connect trojans. how do i use them if i cant port forward. thats what my question was aimed at. and what's this hole punching technique used by google?
NO IMAGES IN SIGNATURE!

#5 Reaper527

Reaper527

    Specialist

  • Members
  • 131 posts

Posted 07 August 2006 - 06:17 AM

and what's this hole punching technique used by google?


he's saying find it on google ;)

#6 boshcash

boshcash

    Staff Sergeant

  • Sergeant Major
  • 461 posts

Posted 15 August 2006 - 07:26 PM

an easy solution : get access to a shell and listen from it ..

or use an irc bot trojan ..

#7 ANORIUS

ANORIUS

    Private

  • Members
  • 16 posts

Posted 15 August 2006 - 11:03 PM

ok forget p2p software or bittorrent. how about reverse connect trojans. how do i use them if i cant port forward. thats what my question was aimed at. and what's this hole punching technique used by google?


It will be like when you connect to a webpage you don't have to forward port 80 on you computer. like when you make a _reverse_ connection server(the server will then act the 'client') the server connects to the client, (client act as a 'server') so you'l have to forward the port on your router to your client. (portforwarding to the reverseconnect server is not needed, and thats the main point.)

The client listen for the server to connect on a spesified port.
This is why you have to insert the "client" hostname (eks a dyndns address) when your making the reverse connect trojan.

#8 informatech

informatech

    Private First Class

  • Members
  • 52 posts

Posted 16 August 2006 - 05:28 AM

yes i do use a dns to point back to me but still the reverse connect trojan wont connect to me becuase of lack of port forwarding. and how would i use a shell to help me out here?
please show an example
NO IMAGES IN SIGNATURE!

#9 cvh

cvh

    Sergeant

  • Members
  • 209 posts

Posted 16 August 2006 - 05:53 AM

yes i do use a dns to point back to me but still the reverse connect trojan wont connect to me becuase of lack of port forwarding. and how would i use a shell to help me out here?
please show an example

You don't need to forward any ports when you use reverse connect, thats the point of a reverse connection the trojan just dials home.
You need to forward ports when you have a listening connection so the router of the victim knows too which computer he has to send the data to which he receives on a certain port.

Former security researcher for KAPDA.

http://www.kapda.ir OFFLINE FOREVER
http://www.kapda.net Archived website

Iranian Computer Security Science Researchers Institute.

http://en.wikipedia.org/wiki/KAPDA

Search bugtrack and many other mailing lists for my old advisory's, exploits and 0day's.
Search google with keywords: cvh kapda


#10 Edu

Edu

    First Sergeant

  • Members
  • 2,269 posts

Posted 16 August 2006 - 09:56 PM

well u want ur leet trojan to connect back to u from a victim´s pc that is behind a router ?

if u alredy got ur trojan executed in the remote victim´s machine, then prolly some firewall or antivirus blocked it if u re not receiving the connection. or maybe u chose a local port to listen at that ur ISP blocks.
http://www.secumania.net - Secumania security blog.


Embed any executable in a JPEG image and get it to run upon opening the image with this cool tool that abuses a feature of GDI in Windows systems. for governmentsecurity.org members only! click here to get it!

#11 informatech

informatech

    Private First Class

  • Members
  • 52 posts

Posted 17 August 2006 - 04:40 AM

no matter which port i choose i don't recieve the connection. i ahve physical acces to this other computer that is out of my network and i know the server is running and its fine.
plus whne i go on canyouseeme.org to check my port forwarding it tells me i'm not port forwarding correctly.
NO IMAGES IN SIGNATURE!

#12 cvh

cvh

    Sergeant

  • Members
  • 209 posts

Posted 17 August 2006 - 04:59 AM

no matter which port i choose i don't recieve the connection. i ahve physical acces to this other computer that is out of my network and i know the server is running and its fine.
plus whne i go on canyouseeme.org to check my port forwarding it tells me i'm not port forwarding correctly.


Then set up some lame irc channel/server where your lame worm can connect to or let your client listen at some free shell so your trojan connects there, or write some p2p support for your bot, every 16 year old fxp/lamer kiddie can write a worm with the latest MS vuln, irc support, and a scanning mechanism, packed in a sfx archive and launched onto the web.

And did you forward the ports at your router at home to your pc where an app is listening?
It's also possible that your isp has blocked every incoming connection so people won't host web/ftp/smtp servers at home.


:angry:

Former security researcher for KAPDA.

http://www.kapda.ir OFFLINE FOREVER
http://www.kapda.net Archived website

Iranian Computer Security Science Researchers Institute.

http://en.wikipedia.org/wiki/KAPDA

Search bugtrack and many other mailing lists for my old advisory's, exploits and 0day's.
Search google with keywords: cvh kapda


#13 informatech

informatech

    Private First Class

  • Members
  • 52 posts

Posted 17 August 2006 - 05:36 AM

or write some p2p support for your bot, every 16 year old fxp/lamer kiddie can write a worm with the latest MS vuln, irc support, and a scanning mechanism, packed in a sfx archive and launched onto the web.

what are you trying to get at?????? :angry: just chill
i only programm in vb6 and some c so untill i learn more in college i dont think i'm going to creat some 1337 ultra haxxorish worms to devastate the internet. i'm only doing this for fun and knowledge. i have no bad intentions :)

and yes i know how to port forward becuase like 3 months ago i had port forwarding working just fine and everyhting went fast and no programm complained. i know my isp started blocking everything i just want to find a way around it.

or let your client listen at some free shell so your trojan connects there,


free shell. please do explain. see what iwas thinkin was to to have soem computer that doesn't ahve these problems act like a middle man for this type of connection. no luck though. i also tried using netcat but i dont think its suited for that.
NO IMAGES IN SIGNATURE!

#14 cvh

cvh

    Sergeant

  • Members
  • 209 posts

Posted 17 August 2006 - 06:00 AM

or let your client listen at some free shell so your trojan connects there,


free shell. please do explain. see what iwas thinkin was to to have soem computer that doesn't ahve these problems act like a middle man for this type of connection. no luck though. i also tried using netcat but i dont think its suited for that.


Search google for some free shell make sure you have a client for your bot that runs under linux, use ssh and make the client listen at a port.
Let your server on the 'victim' pc connect to that server at that specified port.
It's actually more easier to use an irc channel or another method because many of the the free shells don't allow listening connection anymore because of the abuse (it was abused to run psybnc).

Former security researcher for KAPDA.

http://www.kapda.ir OFFLINE FOREVER
http://www.kapda.net Archived website

Iranian Computer Security Science Researchers Institute.

http://en.wikipedia.org/wiki/KAPDA

Search bugtrack and many other mailing lists for my old advisory's, exploits and 0day's.
Search google with keywords: cvh kapda


#15 dewz75

dewz75

    Private

  • Members
  • 16 posts

Posted 22 August 2006 - 04:44 AM

hi

without having xs to router can we know which tcp and udp ports are open or allowed on our router, i am on LAN and have subnet ip. plz help. :rolleyes:





Also tagged with one or more of these keywords: router