Shulou(Shulou.com)05/31 Report--

Editor to share with you what iox is a tool, I believe that most people do not know much about it, so share this article for your reference, I hope you will learn a lot after reading this article, let's go to understand it!

Iox is a powerful port forwarding & intranet proxy tool, the function of this tool is similar to lcx and ew, but the function and performance of iox are more powerful.

In fact, lcx and ew are both excellent tools, but there is still room for improvement. In the first few days of using these tools, those complex command-line parameters, such as tran, slave, rcsocks, and sssocks, were hard to remember. The working mechanism of these tools is very clear, obviously can be expressed by simple parameters, why use such complex parameters instead? In addition, the network programming logic of these tools can also be optimized. For example, when running the "lcx-listen 8888 9999" command, the client must first connect to ": 8888" and then to ": 9999". In fact, there is no order limit for the connections between the two ports, but there is no such restriction in iox. For example, when you run the "lcx-slave 1.1.1.1 8888 1.1.1.1 9999" command, lcx connects two hosts serially, but it is more efficient to connect two hosts concurrently, which is, after all, a pure iCandle O operation, and iox is implemented in this more efficient way.

Of course, iox also provides traffic encryption, and you can even use iox as a simple ShadowSocks. In addition, iox also provides the function of UDP traffic forwarding.

Because iox is written in Go, the statically connected program is a little large, with 2.2MB in the original program and only 800KB after UPX compression.

Tool Properti

1. Traffic encryption (optional)

2. Friendly command line arguments

3. Logic optimization

4. UDP traffic forwarding

Tool download

Researchers can use the following commands to clone the source code of the project locally:

Using the git clone https://github.com/EddieIvan01/iox.git tool

As you can see, all the parameters of iox are in a uniform format.-l/--local represents listening on the local port, and-r/--remote represents connecting to the remote host.

Two working modes

Fwd mode:

At the same time, listen for 0.0.0.0 8888 and 0.0.0.0 9999 to forward the traffic between the two connections.

. / iox fwd-l 8888-l 9999 for lcx:./lcx-listen 8888 9999

Listen to 0.0.0.0VOBOR 8888 and forward the traffic to 1.1.1.1VOUR 9999.

. / iox fwd-l 8888-r 1.1.1.1 pur9999 for lcx:./lcx-tran 8888 1.1.1.1 9999

Connect 1.1.1.1purl 8888 and 1.1.1.1vig 9999 to forward traffic between the two connections.

. / iox fwd-r 1.1.1.1 slave 8888-r 1.1.1.1 slave 9999 slave 1.1.1.1 8888 1.1.1.1

Proxy mode:

Start the Socks5 service locally at 0.0.0.0 1080

. / iox proxy-l 1080 for ew:./ew-s ssocksd-l 1080

The Socks5 service is enabled on the target host, and the traffic is forwarded to the public network VPS,VPS. The traffic is forwarded from 0.0.0.0 9999 to 0.0.0.0 1080. At this point, you must use the two commands in pairs because it contains a simple protocol to control the connection back.

. / iox proxy-r 1.1.1.1:9999./iox proxy-l 9999-l 1080 / / Note that these two ports are sequential for ew:./ew-s rcsocks-l 1080-e 9999./ew-s rssocks-d 1.1.1.1-e 9999

Next, connect the private network host:

# proxychains.conf# socks5://1.1.1.1:1080$ proxychains rdesktop 192.168.0.100 3389 enable encryption

For example, we want to forward the data from private network port 3389 to VPS:

/ / Target host. / iox fwd-r 192.168.0.100 3389-r * 1.1.1.1 8888-k 656565 / / our host-l * 8888-l 33890-k 656565

At this point, the traffic between the target host and the VPS:8888 will be encrypted, and the pre-shared key is' AAA',iox will use this key to generate the seed key and nonce (normally, nonce should not be reused. However, considering that the encryption function of iox is only to bypass devices such as IDS, in order not to allocate extra space, TCP stream encryption reuses nonce) and uses Xchacha20 stream encryption (AES-CTR is replaced with Xchacha20 in v0.3).

Therefore, the "*" symbol should be used in pairs:

. / iox fwd-l 1000-r * 127.0.0.1 000102./iox fwd 1001-k 000102./iox proxy-l * 1001-r * 127.0.0.1 000102./iox fwd 1002-k 000102./iox proxy-l * 1002-r * 127.0.1 000102./iox fwd 1003-k 000102./iox proxy-l * 1003-k 000102$ curl google.com-x socks5://127.0.0.1:1000

In addition, you can use iox as a simple ShadowSocks:

/ / ssserver./iox proxy-l * 9999-k 000102 / / sslocal./iox fwd-l 1080-r * VPS:9999-k 000102UDP forwarding

At this point, we just need to add a "- u" to the command line argument:

. / iox fwd-l 53-r * 127.0.0.1 purl 8888-k 000102-u./iox fwd-l * 8888-l * 9999-k 000102-u./iox fwd-r * 127.0.0.1 u./iox fwd 9999-r 8.8.8.8 purl 53-k 000102-u

Note: when you do multi-level connection forwarding, Remote2Remote-UDP-mode must be the last one to be started, which is the third command in the example above. Second, UDP forwarding may have some unexpected behavior.

The above is all the content of this article "what is iox?" Thank you for reading! I believe we all have a certain understanding, hope to share the content to help you, if you want to learn more knowledge, welcome to follow the industry information channel!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.