Tunneling and Pivoting

hello why does it show port as 0.0.0.0 whereas i mentioned LPORT am i doing it the right way?

Hey there - those two commands are not related.

When you specify LHOST and LPORT in Step 1, you are specifying the IP Address and Port that your malware will contact once executed on the victim machine.

In Step 2, you’re setting up a Python web server on the Kali machine that you will use to transfer the malware in the upcoming steps. 0.0.0.0 effectively refers to localhost, meaning that it is running on the Kali server (linux - What's the difference in localhost vs 0.0.0.0? - Server Fault).

The only issue I see in your screenshot is that you may have an invalid IP address specified in the msfvenom command. IP addresses ending in .255 are generally reserved as a broadcast address, so it seems unlikely that’s the correct IP address for your Kali workstation. I would re-run ip a to double-check.

1 Like

ohh alright thanks for your help i kinda understand the concept now