-
Notifications
You must be signed in to change notification settings - Fork 1.1k
Pivots
portfwd for tunneling generic TCP connections in/out of a target environment.
Pivots allow you to create "chains" of implant connections, for example if you're trying to deploy a pivot into a highly restricted subnet that cannot route traffic directly to the internet you can instead create an implant that egresses all traffic via another implant in a less restricted subnet. Sliver v1.5 and later pivots can be arbitrarily nested, for example a pivot A can connect thru pivot B to a third egress implant.
Pivots perform an authenticated peer-to-peer cryptographic key exchange regardless of the underlying pivot protocol, therefore pivots can only communicate with other implants generated by the same server. This behavior cannot be disabled.
TCP pivots are implemented in pure Go and are supported on all platforms.
Named pipe pivots are only supported on Windows.
"Bred as living shields, these slivers have proven unruly—they know they cannot be caught."