Ready to Start Your Career?
January 1, 2016
ProxyChains Through Tor And Socks5 Proxy
January 1, 2016
Hi. I'm new to Pentesting and only started studying recently. I am currently studying and writing notes on ProxyChains. My question is, when you configure ProxyChains with some socks4/5 proxies, does it still route proxychains through Tor AND the socks proxies, or does it stop using Tor and only use the socks proxies? If it stops using Tor, isn't that a security risk if the socks proxy is run by a bad-actor? How do I verify that both Tor and the socks proxy are being used together (like reading the output in the terminal)? Hi. I'm new to Pentesting and only started studying recently. I am currently studying and writing notes on ProxyChains. My question is, when you configure ProxyChains with some socks4/5 proxies, does it still route proxychains through Tor AND the socks proxies, or does it stop using Tor and only use the socks proxies? If it stops using Tor, isn't that a security risk if the socks proxy is run by a bad-actor? How do I verify that both Tor and the socks proxy are being used together (like reading the output in the terminal)? Hello. In proxychains.conf there is a bunch of options. If you add proxies it will chain them through tor and then through the ones you've added. Its most awesome. I use strict chain and add my socks proxies after tor in the .conf its the best way because tor blocks the end points for scanning. Here is some info to get you started: When you want two (or more) different proxies in chain: like: your\_host proxy 1 (TOR) proxy 2 (HTTP or SOCKS4/5) target\_host You may need it when the only way out from your LAN is through proxy server. Or to get out from behind restrictive firewall that filters some ports in outgoing traffic. And you want to do that with some app like telnet. Indeed you can even access your home LAN from outside via reverse proxy if you set it. Use external DNS from behind any proxy/firewall. Use TOR network with SSH and friends. Some cool features: \* Different chaining options supported random order from the list ( user defined length of chain ). exact order (as they appear in the list ) dynamic order (smart exclude dead proxies from chain) \* You can use it with any application, even network scanners oh yes - you can make portscan via proxy (or chained proxies) for example with Nmap scanner (www.insecire.org/nmap). proxychains nmap -sT -PO -p 80 -iR (find some webservers through proxy) Source: [proxychains sourceforge howto](https://proxychains.sourceforge.net/howto.html)' man proxychains ' in the terminal for the manual will tell you all you need to know. Here is a video if you don't like reading: [You tube - install ToR Proxy and Configure proxychains](https://www.youtube.com/watch?v=d91w9D1FPIk) Hi Doktor, Thanks for your answer. How do we configure the proxychains.conf file to first go through Tor, then one of the socks proxies. Or is Proxychains automatically configured to go through Tor first regardless of where in the Proxy List you leave the lookback IP and port 9050 setting? Also, how do I change the proxyresolv configuration so that I can choose my own DNS rather than the hardcoded level 3 Communications DNS server? Put the settings like this in proxychains.conf and change your dns in the Network Manager. # The option below identifies how the ProxyList is treated. strict\_chain # Proxy DNS requests - no leak for DNS data #proxy\_dns tor-->socks5-->interweb ----------------------------------------------------------- It goes in order from top to bottom so if you put # defaults set to "tor" socks5 \[proxy ip\] \[proxy port\] socks4 127.0.0.1 9050 That would result in: YourBox-->socks5-->tor-->interweb ----------------------------------------------------------- Thanks for the reply. The only thing which concerned me was the Tor issue, and the issue with DNS. I would like to be able to control which DNS servers I use, since you never know which DNS servers are in league with which large spy agencies. Does the DNS resolution route through Tor as well? Sorry for the noob questions. It's just that I need to thoroughly understand what I am doing here since the proxychains website does not clarify some things. When this is off it goes through your dns and when its on it goes through the proxy dns. # Proxy DNS requests – no leak for DNS data #proxy\_dns Its the way around it\]. I've never had a problem with proxychains setup like that. YourBox–>tor–>socks5–>socks5–>interweb Can anyone tell me a trustworthy place to find proxies? Ive tried samair.ru but all the proxies ive tried time out. Right now i'm only using the defualt tor, and id really like to add more proxies to my list. Hi there, I think you should try HideMyAss proxies . Hi, I saw something torghost which does the tor proxy system wide. How it differs from proxychain ? Anyone can clarify on this? hi, i know iam posting a little bit late here but iam struggling with a problem. when i try to chain socks after the last tor exit node, it keeps denying the connection. now i have read somewhere online (i cant remember where) that 2 connection cant acces the same localhost. is this true? and if its true or not, how do i fix this problem so that my traffic still goes through pc->tor->socks5->internet? thanks in advance