{"id":13510469,"url":"https://github.com/opsdisk/the_cyber_plumbers_handbook","last_synced_at":"2026-01-26T12:34:47.423Z","repository":{"id":39864580,"uuid":"403740787","full_name":"opsdisk/the_cyber_plumbers_handbook","owner":"opsdisk","description":"Free copy of The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling, port redirection, and bending traffic like a boss.","archived":false,"fork":false,"pushed_at":"2021-10-27T13:22:03.000Z","size":5302,"stargazers_count":2635,"open_issues_count":5,"forks_count":172,"subscribers_count":36,"default_branch":"master","last_synced_at":"2025-03-23T20:12:18.148Z","etag":null,"topics":["blueteam","kali","lateral-movement","oscp","penetration-testing","pivoting","proxychains","redteam","socks5","ssh","tunneling"],"latest_commit_sha":null,"homepage":"https://opsdisk.gumroad.com/l/cphlab","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/opsdisk.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2021-09-06T19:43:41.000Z","updated_at":"2025-03-22T19:26:29.000Z","dependencies_parsed_at":"2022-07-14T07:20:39.191Z","dependency_job_id":null,"html_url":"https://github.com/opsdisk/the_cyber_plumbers_handbook","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/opsdisk%2Fthe_cyber_plumbers_handbook","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/opsdisk%2Fthe_cyber_plumbers_handbook/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/opsdisk%2Fthe_cyber_plumbers_handbook/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/opsdisk%2Fthe_cyber_plumbers_handbook/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/opsdisk","download_url":"https://codeload.github.com/opsdisk/the_cyber_plumbers_handbook/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245249210,"owners_count":20584497,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["blueteam","kali","lateral-movement","oscp","penetration-testing","pivoting","proxychains","redteam","socks5","ssh","tunneling"],"created_at":"2024-08-01T02:01:40.362Z","updated_at":"2026-01-26T12:34:47.384Z","avatar_url":"https://github.com/opsdisk.png","language":null,"funding_links":[],"categories":["Others","E-books","Uncategorized","redteam","网络信息服务","main() {"],"sub_categories":["Programming","Uncategorized","网络协议","Network"],"readme":"\u003cp align=\"center\"\u003e\n\u003cimg src=\"img/book_cover.png\" width=50% height=auto\u003e\n\u003c/p\u003e\n\n# The Cyber Plumber's Handbook\n\nThis repo contains the PDF book **The Cyber Plumber's Handbook - The definitive guide to Secure Shell (SSH) tunneling,\nport redirection, and bending traffic like a boss**.  The book was first published in October 2018 for purchase, but now\nI'm providing it for **FREE** to anyone interested in learning more about the magic of SSH tunnels and port redirection.\n\n## Book Overview\n\nThis book is packed with practical and real world examples of SSH tunneling and port redirection in multiple realistic\nscenarios. It walks you through the basics of SSH tunneling (both local and remote port forwards), SOCKS proxies, port\nredirection, and how to utilize them with other tools like proxychains, nmap, Metasploit, and web browsers.\n\nAdvanced topics included SSHing through 4 jump boxes, throwing exploits through SSH tunnels, scanning assets using\nproxychains and Metasploit's Meterpreter, browsing the Internet through a SOCKS proxy, utilizing proxychains and nmap\nto scan targets, and leveraging Metasploit's Meterpreter portfwd command.\n\n## Getting Started\n\n1) Agree to the terms of the Creative Commons Attribution-NonCommercial 4.0 International [License](./LICENSE.md) which\nis also outlined [here](https://creativecommons.org/licenses/by-nc-nd/4.0/).\n\n2) Download the latest PDF from [here](cph_version_1.4_20210829.pdf).\n\n3) Purchase the **The Cyber Plumber's Lab Guide and Interactive Access** from\n[here](https://opsdisk.gumroad.com/l/cphlab).  Your purchase includes a PDF lab guide with **45+ exercises** and **28**\ndays of interactive access to a real live lab to practice SSH tunneling and port redirection techniques!\n\n## Interactive Lab\n\nThe Cyber Plumber's Lab Guide and Interactive Access can be purchased [here](https://opsdisk.gumroad.com/l/cphlab).\nThere is a 75% off discount for students...just send an email to\n[cph-student@opsdisk.com](mailto:cph-student@opsdisk.com) from your educational email address.\n\n### Why purchase?\n\n**SSH tunneling is a skill you can use for the rest of your IT career!** SSH tunneling and port redirection are skills\nthat can be applied in any information technology discipline, so it does not matter if you are a network engineer, red\nteamer, penetration tester, developer, or something in between.  That being said, the examples tend to skew towards\npairing tunneling techniques with penetration testing tools.\n\n\u003cp align=\"center\"\u003e\n\u003cimg src=\"img/gumroad_product_description_2.png\"\u003e\n\u003c/p\u003e\n\n### Lab Description\n\nFour jump boxes provide the Internet facing portion of the lab.  However, the fun really starts when you start\nleveraging tunneling techniques to reach the internal side of the network to access services such as Secure SHell (SSH),\nWeb, and Remote Desktop Protocol (RDP).  The Linux and Windows targets are also running vulnerable services that can be\nexploited for the true tunneling ninjas. Each of the exercises has a brief description and solution to assist you in the\nevent you get stuck.\n\n\u003cp align=\"center\"\u003e\n\u003cimg src=\"img/cloudcraft_cph_lab_infrastructure.png\" width=80% height=auto\u003e\n\u003c/p\u003e\n\n### Requirements\n\nThe interactive lab portion requires a Linux-based host or virtual machine (preferably Kali), Internet access, a basic\ngrasp of networking and Information Technology fundamentals, and Linux commands.  The use of a Windows Operating System\nto access the lab has not been tested.  Immediately after purchasing this, you will receive an SSH private key via email\nand instructions on how to access the lab.  **Your lab time starts immediately after purchasing, so plan accordingly!**\n\n### Testimonial\n\n\u003e After your course, I have been able to:\n\u003e\n\u003e 1) Stand-up a cloud-hosted Kali box, configure OpenVAS, ssh into the box...all encrypted yet run on my local browser.\n\u003e I no longer have to bother with installing VNC.\n\u003e\n\u003e 2) Same thing with Dradis...allows a penetration testing team to collaborate on an assignment without having to mess\n\u003e with certificates.\n\u003e\n\u003e 3) I wrote a script that launches 10 VMs in DigitalOcean in seconds, then I ssh into them with -D 9050...9059. I have\n\u003e 10 entries in my proxychains.conf file for 127.0.0.1 9050...127.0.0.1 9059, and then launch theHarvester with\n\u003e proxychains. Google no longer accuses me of being a bot.\n\u003e\n\u003e 4) I passed a tip along to a network engineer at my company that he should read your book rather than exposing an\n\u003e administrative login page on a public facing website.\n\u003e\n\u003e 5) For privacy, I sometimes create a VM on the fly and use it as a proxy in Firefox.\"\n\n### Bulk / Team Pricing\n\nThe purchase of the lab guide and access is for individual use only.  If you are interested in bulk or team pricing for\nyour organization, please contact me using [here](mailto:cph@opsdisk.com).  Access keys cannot be shared and your lab\naccess will be immediately revoked without a refund if you are discovered doing this.\n\n## FAQ\n\n1) What if I find a error / typo?\n\n    Submit a issue [here](https://github.com/opsdisk/cyber_plumbers_handbook_free/issues)\n\n2) Will you open source the [LaTeX](https://en.wikipedia.org/wiki/LaTeX) files?\n\n    Maybe\n\n## Contact\n\n* [Email](mailto:cph@opsdisk.com)\n* [@opsdisk](https://twitter.com/opsdisk)\n\n## License\n\nDistributed under the Creative Commons Attribution-NonCommercial 4.0 International License. See `LICENSE.md` for more\ninformation.\n\n\u003ca rel=\"license\" href=\"http://creativecommons.org/licenses/by-nc/4.0/\"\u003e\u003cimg alt=\"Creative Commons License\" style=\"border-width:0\" src=\"https://i.creativecommons.org/l/by-nc/4.0/80x15.png\" /\u003e\u003c/a\u003e\n\u003cbr /\u003eThis work is licensed under a \u003ca rel=\"license\" href=\"http://creativecommons.org/licenses/by-nc/4.0/\"\u003eCreative Commons Attribution-NonCommercial 4.0 International License\u003c/a\u003e.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fopsdisk%2Fthe_cyber_plumbers_handbook","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fopsdisk%2Fthe_cyber_plumbers_handbook","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fopsdisk%2Fthe_cyber_plumbers_handbook/lists"}