The Life of a Penetration Tester_ Using Tor and Privoxy on Kali _ Debian _ Backtrack Linux to Anonymize Internet Surfing or Open Blocked Websites

04/03/2015 TheLifeofaPenetrationTester:UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites

http://lifeofpentester.blogspot.in/2013/04/usingtorandprivoxyonkalidebian.html 1/7

SecurityJournal

TheLifeofaPenetrationTester

Home Publications Aboutme

S u n d a y , A p r i l 7 , 2 0 1 3

UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymizeInternetSurfingorOpenBlockedWebsites

Writtenby:PranshuBajpai|FindPranshuonGoogle+AndLinkedIn

Freedomofexpressionandspeechisyourfundamentalrightandiftheytrytotakethatawayfromyoubyblockingaccesstospecificwebsites,thenthetoolsmentionedinthispostwillaidyouindefeatingcensorship.

TheyrecentlyblockedwebsiteslikeHackThisSiteonthenetworkthatIuse,categorizingthemas"Hacking".TheirintentionsaregoodI'msurebutIneedtovisitsuchwebsites.

Anyway,Idecidedtouseaproxywebsite(whichisnotalwaysreliablesincetheywillblockaccesstothoseaswell).AsIsuspected,itwasblockedunder'ProxyAvoidance'.

SubscribeTo

Posts

Comments

Follow@pranshubajpai89

UsingTorandPrivoxyonKali/Debian/BacktrackLinuxToAnonymize

InternetSurfingorOpenBlockedWebsitesWrittenby:PranshuBajpai|FindPranshuonGoogle+AndLinkedInFreedomofexpressionandspeechisyourfundamentalrightandifthe...

InstallingNessusinKaliLinuxInstalledthenewKaliPenTestingLinuxtoday.

HoweverIwasdisappointedtoseenoNessusVul.Scanner.Triedtoinstallitby'ap...

IndexPage'/'

HowToHackAWebsiteSimpleDemo|KaliLinux/BackTrack|

PranshuWrittenby:PranshuBajpai|FindPranshuonGoogle+AndLinkedInIwastestingforSQLvulnerabilitiesatrandomovertheInternetand...

HackingNeighbour'sWifi(Password)|HackingNeighbor's

Wireless(Internet)|StepbyStepHowToWrittenbyPranshuBajpai|JoinmeonGoogle+|LinkedInDisclaimer:Foreducationalpurposesonly:Thisismeantmerelyto

MostPopular

More NextBlog CreateBlog SignIn



Setuptheonionroutertogetaroundthis.First,youneedtoinstallitonyourboxusingthefollowingcommand:

#aptgetinstalltorprivoxy

Thiswillinstall2separatepackages'Tor'and'Privoxy'.

Torwillhostaproxyserveronyourmachineonport9050oftype'Socks5'

Privoxywillhostaproxyserviceonyourmachineonport8118oftype'HTTP'

AlsoinstalltheGUIfortorcalled'vidalia'

#aptgetinstallvidaliapolipo

Now,editthePrivoxyconfigurationfile:

#vi/etc/privoxy/config

Addthislineatthebottomofthisfile:

forwardsocks4a/localhost:9050.

Saveandclosethefile.ThiswilltellprivoxytoforwardSockstraffictotheServicerunningonport9050onyourlocalhost(thisserviceisTor)

TimetofireupTorandprivoxyservices:

#/etc/init.d/torstart#/etc/init.d/privoxystart

NowgotoApplication>Internet>Vidalia

Checkthatitsays'connectedtotornetwork'

Youcanclickon'viewthenetwork'toseealltherelaysthatyouarepassingthrough.

Nowgotoyourbrowserandsettheproxyto:

ProxyIP'127.0.0.1'Proxyport9050TypeSocks5

exhibit...

MultipleScreensin(Kali)Linux|HowTo

USDtoINRExchangeRateCalculator(Xoom,PayPal)ScriptinPython

PhDComicsDownloader|PythonScripttoDownloadPiledHigherandDeeperComics

HowtoUseTruecrypt|TruecryptTutorial[Screenshots]|KaliLinux,BackTrack,BackBox,Windows

FOCAMetadataAnalysisTool

Aboutme

PublicationsPranshuBajpai

AffineCipherEncryptionDecryptionSourcecodeinJava

VignereCipherEncryptionDecryptionSourcecodeinJava

OneTimePadEncryptionDecryptionSourcecodeinJava

Recent

PranshuBajpai

SecurityResearcher

Viewmycompleteprofile

#whoami

Search

Search

Academic(1)Android(1)Backtrack(24)Cryptography(8)ExploitResearch(1)GeneralProgramming(1)Hacking(31)Java(12)KaliLinux(34)Linux(10)ListsOfBest..(3)MalwareAnalysis(1)metasploit(5)misc(4)Mutillidae(4)MyPythonScripts(4)mysql(1)screencast(1)SSH(1)Tomcat(2)WebApplicationsHacking(6)

Labels



PostedbyPranshuBajpai

Labels:Backtrack,Hacking,KaliLinux

Note:IfyouareusingtheFireFoxorIceweaselbrowser,youcanuse'AutoProxy'addontosetthisup.

Reloadthewebsitethatwasblockedearlier,ifyou'vedoneitright,youshouldhaveaccesstoit.

Furthermore,allyourbrowsingisnowanonymoussinceyouareconnectedthroughtheonionrouter.

+3 Recommend this on Google

35comments:

Windows(2)WirelessHacking(3)

DoNotCopy

495,018Pageviews



Anonymous April14,2013at7:52AM

Thankyouverymuch!

Reply

Anonymous April23,2013at5:33PM

THANKS!!!!!

Reply

Avadhoot April27,2013at11:35PM

Thanksforthispost

Reply

Anonymous May1,2013at12:45PM

Reply

Thiscommenthasbeenremovedbyablogadministrator.


Reply



Reply



Excellentpost!!!Workslikeachamp

Reply

JosNinguem May22,2013at2:03AM

workslikeacharm.thanks=)

Reply


Reply



ThanksEverythingworksgoodEgoDust

Reply

Anonymous May31,2013at8:41AM

This isagreatposthowever Iama littleconfusedonwhyweneedprivoxy,as fromwhat Icantellthewebbrowserconnectsdirectlytotoronport9050ratherthan8118whichisusedbyprivoxysowhydoesitneedtobeinstalledandrunningisitdoingsomethingextrainthebackground?

Reply



Replies

Reply

Anonymous June24,2013at7:23AM

You'reright.It'sbypassingprivoxy.Themainreasontohaveprivoxyisbecausetorwill leakdns information if runningasanhttpproxy.Privoxy is the fix for that,hedoneitwrong.

Anonymous June1,2013at2:20PM

Reply



Thanksmate..verygoodpost!!

Reply


Hi,excellentpost,ihaveaquestion.Inproxysettings,yousettorport9050directly.Thisway,privoxyiscompletelyleftout.I'mworkingonasimilarsetuponKali,andi'mlookingatprivoxylog. If i use tor port 9050, privoxy log is silent (onmax debug), tor activity via arm showsnetworkgraph,sitesareloading.If ispecifyprivoxy,ondefault8118port, iseeconnectionsopenand timeoutonprivoxy log,no toractivity,andsitesnever load. I trywith twoconfigs,privoxyforwardingtotor,andprivoxystandalone.Myconclusionisthatyouhaveleftprivoxyoutofyourconfig.Meaning,youleakheaderdataoutside...

Reply


Reply



tor is my but real ip is not chagimg.i use auto proxy setting but ,when I tried to watchwww.whatismyipaddress.com.thenmyipaddisnotchanged

Reply


Reply


ketangsang July1,2013at3:04AM

Reply


Anonymous July18,2013at2:50AM

Is vidalia hidewholemachine ip? If i use sqlmap thenwhat to do to protectme not to betraced

Reply

Anonymous August17,2013at9:55PM



Replies

Reply

Replies

Reply

Replies

Reply

I see no reason to also install polipo in this szenario. Why would you want two proxiesinstalled?

Reply

Anonymous August17,2013at11:31PM

IsyoursettingsforTorisachainedproxysetup?Orelse,thetracemightstilltrackable.

Reply

Anonymous December25,2013at5:56AM

WTF?

Anonymous October10,2013at2:38PM

Forattackthisnotverygood.

Reply

PranshuBajpai October10,2013at10:46PM

huh?

ZacManns November6,2013at9:12AM

Reply

Thiscommenthasbeenremovedbytheauthor.

Anonymous November10,2013at8:28PM

I cant save "forwardsocks4a/localhost:9050" on terminal. after edit i press ctrl+x its notworking,sothereisnosavingoption.Help...

Reply

Anonymous December6,2013at6:49PM

aftertypingthatpressesckeyandthentypewqandenter

Anonymous November15,2013at9:28PM

Browsershouldbeconfiguredthrough8118.Ifit'sconfiguredthrough9050,you'rebypassingprivoxyandjustgoingthroughTOR,whichcanleaktimezoneinformation.

Reply

Anonymous November28,2013at6:02AM

gettingerror...needhelp

Reply




NewerPost OlderPostHome

Subscribeto:PostComments(Atom)

Enteryourcomment...

Commentas: GoogleAccount

Publish Preview

heybroIhaveonedoubtwhatistheextensionofkalilinuxsoftwares

Reply


Thankyou!itworks!!

Reply

sonimehar February15,2014at2:36PM

helpmeplzzz

Reply

MusaIrfan February16,2014at8:50AM

KaliLinuxProblem:(CanAnyonehelpme

Reply

abdul January19,2015at9:03AM

I have a questionwhich is confusingme, i applied every step in this tutorial, but after thiswhenicheckedmyIPon"WhatisMyIP"itwassameasbefore

Reply

PranshuBajpai2013AllRightsReserved.Simpletemplate.PoweredbyBlogger.

Documents

The Life of a Penetration Tester_ Using Tor and Privoxy on Kali _ Debian _ Backtrack Linux to Anonymize Internet Surfing or Open Blocked Websites