XFLTReaT - Tunnelling Framework

ID KITPLOIT:6804649876674866854
Type kitploit
Reporter KitPloit
Modified 2017-09-07T21:00:02


This is just one thing of many things that was missing from the Internet. If you got tired of trying several tunnelling tools for each protocols, this must be your ~~ tool ~~ framework.

Available modules

  • TCP
  • UDP
  • ICMP
  • SOCKS v4, 4a, 5
  • DNS (A/CNAME, PRIVATE, NULL) - Proof of Concept

Available versions
At the moment there are two different branches of the framework. The master branch is a somewhat stable version (v0.1) without the DNS module. The other branch is called next-version and that has the newer version (v0.2), which includes DNS support for a few records (A/CNAME, PRIVATE, NULL). This branch has not been tested thoroughly yet, please respect that before making an opinion about the source code and framework.
To have a somewhat stable release (without DNS), please use:

# git clone https://github.com/earthquake/xfltreat/

To get the DNS support from the next version branch (which was not tested thoroughly, please keep that in mind):

# git clone https://github.com/earthquake/xfltreat/
# cd xfltreat
# git checkout -b next-version v0.2

To configure DNS please check the DNS_notes.md.


# git clone https://github.com/earthquake/xfltreat/
# pip install -r requirements.txt
edit xfltreat.conf
# server side: python xfltreat.py
# client side: python xfltreat.py --client

Set up your linux box as a server
Enable IP forwarding as root by using either:

# sysctl -w net.ipv4.ip_forward=1


# echo 1 > /proc/sys/net/ipv4/ip_forward

then set up iptables to do the NAT'ing for you:

# iptables -t nat -A POSTROUTING -s -o eth0 -j MASQUERADE

A few things to note

  • python 2.7
  • Linux only
  • root privs needed

Side notes to expand

  • server and check functionality can handle all modules enabled in the config.
  • client should have only one enabled.

Download XFLTReaT