Security Dashboard
Security vDNA
ARTICLE pwnat tool v0.1-beta bypassing NAT
Saturday 27 March 2010 - 1106 read - ( Keywords : Connectivity , Network Discovery , pwnat )
pwnat, pronounced "poe-nat", is a tool that allows any number of clients behind NATs to communicate with a server behind a separate NAT with *no* port forwarding and *no* DMZ setup on any routers in order to directly communicate with each other. The server does not need to know anything about the clients trying to connect.Simply put, this is a proxy server that works behind a NAT, even when the client is behind a NAT, without any 3rd party.
There is no middle man, no proxy, no 3rd party, no UPnP/STUN/ICE required, no spoofing, and no DNS tricks.
More importantly, the client can then connect to any host or port on any remote host or to a fixed host and port decided by the server.
pwnat is based off of the UDP tunneling software by Daniel Meekins, udptunnel, and my original chownat.
VERY useful during a pentest behind NATs
POSTSCRIPTUM
COMPLIANCE MANDATES
Network Discovery : PCI DSS 11.2, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5
RELATED ARTICLES
Connectivity,
Network Discovery,
pwnat,
30 March 2010 : pwnat tool v0.2-beta released27 March 2010 : pwnat tool v0.1-beta bypassing NAT
