Webtunnel

February 23, 2009 8:06 am · 0 comments

by Black

in Anonymity,Open Source

So, you are at work and all you have are the default HTTP ports open. You still want to use other ports and do things other normal users would do. What do you do in such a case? Simple! Use Webtunnel!

Webtunnel is a network utility that encapsulates arbitrary data in HTTP and transmits it through a web server.

This rings a bell alright! HTTPTunnel! Well, not exactly. It is similar to httptunnel, however, it has several key important differences: its server component runs in the context of a web server as a CGI application (with optional FastCGI support) so it does not need its own port, and supports most things that the web server supports, such as authentication, HTTP 1.1, HTTPS, and client certificates; it uses simple requests and responses so it works seamlessly through forward and reverse proxies; it is multi-threaded (actually multi-process using sockets for inter-process communication) to allow multiple parallel connections to multiple destinations simultaneously. Also, HTTPTunnel refuses to work through a reverse proxy. To top it, it allowed only one connection at a time and required multiple instances to tunnel to different ports!

A good news is that a new version was released yesterday! So, in Webtunnel 0.0.3 you have,
Added child wait in server to fix zombies under FastCGI
Added user authentication based on HTTP user
Added access control lists based on user
Changed the default debug level to 1
Changed some command line behavior

Download and related information is available here:
Download: Get the latest version of the software.
Documentation: Browse the user documentation.
Forums: Disucss with other webtunnel users.
Bugs: Review and submit bug repots.

Related Blogs

If you enjoyed this article, you might also like:

  • August 20, 2010 -- UPDATE: XSSer v0.7a!
    All of you web application penetration testers, check out this release of XSSer version 0.7a, for i...
  • July 2, 2010 -- UPDATE: XSSer v0.6a!
    All of you web application penetration testers, check out this release of XSSer version 0.6a, for i...
  • July 1, 2010 -- UPDATE: JBroFuzz 2.3!
    OWASP has yet again updated and released the newest version of their fine tool – JBroFuzz. The curr...
  • April 19, 2010 -- UPDATE: XSSer v0.5a!
    All of you web application penetration testers, check out this release of XSSer version 0.5a!“C...
  • April 13, 2010 -- UPDATE: JBroFuzz 2.1!
    OWASP has released the newest version of their fine tool – JBroFuzz. The current version is JBroFuzz...
  • January 26, 2010 -- DIRB – Web Content Scanner!
    DIRB is a Web Content Scanner. It looks for existing and/or hidden Web Objects. It basically works b...
  • October 13, 2009 -- cum security toolkit – cgi vulnerability scanner and a port scanner
    The "cum security toolkit" (cst) contains a cgi vulnerability scanner and a port scanner, and can be...
  • March 19, 2009 -- WebTunnel 0.0.5 released!
    Guys, our endeavour is to bring you the most updated tools in the market. On the same lines, we had ...

Tagged as: , , , ,

Comments on this entry are closed.

Previous post:

Next post: