ICMP tunneling with ptunnel-ng

GuyKazuya · December 4, 2022, 11:25pm

Anyone have any issues using the ptunnel-ng binary from Release SeLinux update, pcap improvment · utoni/ptunnel-ng · GitHub?

I’m currently on the ‘Pivoting, Tunneling, and Port Forwarding’ Module, section ’ ICMP Tunneling with SOCKS’. I’m able to compile the binary per instructions on my attack host(kali). I can execute the binary on my attack host. But when I move the folder to the pivothost, it won’t execute there. I tried running the auto.sh script but I keep getting the following error:
++ pwd

OLD_WD=/home/ubuntu/ptunnel-ng
++ dirname ./autogen.sh
NEW_WD=.
cd .
autoreconf -fi
./autogen.sh: line 10: autoreconf: command not found
aclocal
./autogen.sh: line 11: aclocal: command not found
autoheader
./autogen.sh: line 12: autoheader: command not found
automake --force-missing --add-missing
./autogen.sh: line 13: automake: command not found
autoconf
./autogen.sh: line 14: autoconf: command not found
cd /home/ubuntu/ptunnel-ng
./configure
./autogen.sh: line 19: ./configure: No such file or directory

I tried sudo apt install autoconf on the pivot host(HTB instance), but it errors out. I’m assuming there are restrictions in place that prevent updating/changing packages on an HTB host; totally understandable.

How do I get ptunnel-ng to work on pivothost?

NOTE* I get the following error when trying to run the binary via repository directory transfered from attack host:

ubuntu@WEB01:~/ptunnel-ng/src$ ./ptunnel-ng -h
./ptunnel-ng: error while loading shared libraries: libcrypto.so.3: cannot open shared object file: No such file or
directory

Someone · December 5, 2022, 12:54pm

you don’t need to install anything, just clone the ptunnel-ng to your attack host then use command " sudo ./autogen.sh "
now copy the repo to pivot host using scp and use it directly

GuyKazuya · December 5, 2022, 9:33pm

thats what I did

truthreaper · December 18, 2022, 8:56pm

anyone manage to succesfull use ptunnel? also stuck here, Probably gonna just use another pivot method this ptunnel is full of fail.

GuyKazuya · December 19, 2022, 1:56am

Yes I did. I compiled it on a different linux distro(mint)5.4.0-135-generic x86_64. I think some of the lab boxes aren’t up to date. I had a similar issues with tools presented in Active Directory Enumeration & Attacks.

truthreaper · December 20, 2022, 2:34am

Thanks for the tip. So you loaded a very old version of Linux mint in order to compile the program? man im probably going to do Active directory enumeration next guess ill need to do that.

GuyKazuya · December 21, 2022, 3:16am

Pretty much. I’m def a noob, so I bet there’s a better way.

xubster · December 27, 2022, 10:58pm

Had the same problem at first when trying to build it from scratch in the ubuntu server, but insted I built it in Parrot OS and copied the whole folder, including binaries, to the ubuntu server. No real need to build it in the victim host.

raff · January 14, 2023, 11:54am

I had the same issue, solved installing autoreconf:
sudo apt install autoreconf