for an upcoming security assesment in a rather constrained network environment I’ll be provided with a ssh access to a internal linux mashine from which I can pentest the network. Unfortinatly we could not agree with the client on using a “proper” VPN for me.
Most of the stuff I can tunnel using an ssh tunnel + proxychain (although it constrains to TCP only) - but I also like to run a GVM scan in the background just to be sure not to miss anything.
Now in my previous assigments I’ll just plug my VM running GVM into the established VPN connection and can access the client network with GVM. But how would the logic look like using a socks proxy to access the client net? Is there a Socks proxy option in GVM which I can’t find?
And since this is a fixed contract with my client, I can’t “hack” me another backdoor ssh tunneling is the only way to go