Hacking Notes
Searchβ¦
β
Offensive
π‘
Defensive
β¨
Programming
NGROK
Using ngrok to access internal services
Purpose
Ngrok allows us to share internal services to Internet facing systems. It's an incredibly useful way to access internal systems or create a way to directly access sensitive network systems.
Setup
Configure the ngrok preferences with the applicable key
1
ngrok config add-authtoken ***REDACTED KEY***
Copied!
Usage
As always, we ask for help to learn what to do.
ngrok helpTo start a listener, we can simply run the code below:
ngrok http 9999This will result in a window similar to below:
After starting the listener, this shows the web interface to reach the internal port
In the example above, we can directly access the service on localhost:9999 by accessing the page at
https://7807-52-22-69-233.ngrok.io. This was a python3 simple http server on that port.1
EXAMPLES:
2
ngrok http 80 # secure public URL for port 80 web server
3
ngrok http -subdomain=baz 8080 # port 8080 available at baz.ngrok.io
4
ngrok http foo.dev:80 # tunnel to host:port instead of localhost
5
ngrok http https://localhost # expose a local https server
6
ngrok tcp 22 # tunnel arbitrary TCP traffic to port 22
7
ngrok tls -hostname=foo.com 443 # TLS traffic for foo.com to port 443
8
ngrok start foo bar baz # start tunnels from the configuration file
9
β
Copied!
Last modified 2mo ago