Explore a fork of OpenSSH daemon designed to exploit loose egress filtering and maneuver around network restrictions in this 28-minute conference talk from NorthSec. Delve into the Blackbear Project's functionality, which extends regular forwarding and tunneling abilities to aid in post-exploitation and lateral movement. Learn how this tool provides reliable interactive shell access, overcoming limitations of traditional reverse shells. Discover its capabilities in privileged operations, credential collection, access denial, key management, and web shell integration. Gain insights into the project's history, development challenges, and configuration options, including key generation and bash implementation.
Overview
Syllabus
Introduction
History
Functionality
Postexploitation
Development Issues
Privileged
Collecting Credentials
Denying Access
Keys
Configuration
Key Generation
Web Shell
Bash
Taught by
NorthSec