Page cover

Squid Proxy

Squid is a caching and forwarding HTTP web proxy

Port 3128

  • The config file normally lives in /etc/squid/squid.conf

  • Relays on /usr/lib/squid/basic_ncsa_auth for authentication and the program stores the passwords in /etc/squid/passwords.

  • Check if you can reverse it to access the local network.

Reverse the proxy

First add the address and port to the last line of your proxychains.conf file:

http 10.10.10.67 312
  • Then, just nmap the localhost:

proxychains nmap -n -sT 127.0.0.1
Setup an Upstream Proxy Server
  1. On burp go to Settings > Network > Connections

  2. Create a new rule with * for the Destination Host, set the target proxy as the Proxy Host/Port and set the credentials with basic Authentication type.

  3. In order to fuzz the localhost, set a Proxy Listener, redirect to 127.0.0.1:80 and set 127.0.0.1:1234 as the interface.

  4. Now add the interface to /etc/proxychains.conf.

Last updated