Using HTTP proxy tools over SSH tunnels

When pivoting through a Linux box I wanted to use Dirbuster through the ssh tunnel.

Unfortunately DirBuster does not support SOCKS5 proxies, therefore I decided to use a tool called polipo.

Polipo allows you to have a parent socks5 proxy that is then used to make  a local http proxy on a port you specify.

I used the default config file from TOR. Config file

To get it working:

$polipo -c torconfig

Established listening socket on port 8118.

Then connect to the pivot machine using

$ ssh -p 22 -D 127.0.0.1:9050 rootuser@192.168.1.31

Leave both console windows open and then

Config the tool you want to use localhost:1881