How to: Use SSH Local Port Forwarding to Pivot into Restricted Networks

SSH is a powerful tool, with more uses than simply logging into a server. SSH provides X11 forwarding, port forwarding, secure file transfer, and more. Using SSH port forwarding on a compromised host with access to a restricted network can allow an attacker to access hosts within the restricted network, or pivot into the network. In this article we'll look at one of the SSH port forwarding options, local port forwarding. Since this can be somewhat confusing, I'd like to talk a little bit about the idea of port forwarding. When we think of port forwarding, we usually think of it in the terms... more