Deploy Self hosted interactsh-server for Blind & Out of Band Testing

References:

Why I needed to build a OOB Testing server

The main reason was to have a way to exfiltrate data using dns. This can not only be used for data exfiltration but also for testing out-of-band and blind testing. use custom domain like safestwebsite.com name which are generally not blacklisted.

Step 1: Create AWS EC2 server — free tier

You need a EC2 server, you can use EC2 free tier or buy EC2 server, whichever works for you. I have used free tier. For the complete steps follow the Main Reference.

Specifications (already there in main reference) :

  • OS : latest ubuntu (free tier)
  • Hardware: t2.micro
  • Disk Space < 30GB
  • hours/month = 750 hours (if you are using only one server then you dont have to worry). Read AWS documentation to understand how “hours” are billed.
  • Validity = 1 year
  • Make sure you select an alert of free tier (this is not mentioned in Main Reference). This will ensure that you will be notified if you are charged additional cost.

An Important instruction about this AWS elastic IPs

  • The assigned AWS IP address will change if you reboot or restart the server. This will affect your AWS public dns name, which means your nameserver record of your domain has to be changed. And even after changing all these value and deploying a new burp collaborator server, you may get error while deployment.
  • In this case, (the only way for me that worked was), buy a new domain (free in my case). Map that domain to this new AWS domain name. And now don’t stop the server.

Step 2: Buy Domain Name

Buy using freenom (worked like a charm for me)

  • After buying the domain (valid for 1 year) go to the domain setting and click nameserver

Step 3: Allow the required ports

As you already know, this is not a sensitive server. We will not be using it to save any sensitivities data, it will only be used for validating/checking the out-of-band attacks.

AWS Security Group of your instance.

Step 4: Configuring the interactsh server side on the AWS Ubuntu machine

  • Step 1: Take SSH of your AWS Ubuntu server.
  • Step 2: Update and Upgrade the server
sudo apt update
sudo apt upgrade
  • Step 3: Install go latest version, make sure to configure the PATH environment variable.
  • Step 3: Install interactsh-server
go install -v github.com/projectdiscovery/interactsh/cmd/interactsh-server@latest
  • Step 4: Now run the built file. If you are not able find the file go to ~/go folder.
  1. You domain, here I have used, typeanyname.tk
  2. Public IP of the AWS Ubuntu server, say, 13.14.15.16
sudo -i
interactsh-server -domain typeanyname.tk -ip 13.14.15.16 -wildcard -sa -ldap
interactsh server side

Step 5: Verify if your DNS records are updated

If you get result similar to below this means your DNS records are updated.

success screenshot

Step 6: Configuring the interactsh client side on any machine where you want to see your ouput.

We need to install a client where you can see the the hits that we get on the interactsh server. The server is just that does all the work but do not display the output. If you want to display the output you need a interactsh client.

  • Step 1: Install go latest version, make sure to configure the PATH environment variable.
  • Step 2: Install interactsh-client
go install -v github.com/projectdiscovery/interactsh/cmd/interactsh-client@latest
interactsh-client -s https://typeanyname.tk -t ga60d6sometauthenticationtoken8939b226501f774a

Step 7: Validate the setup

Now open a browser on any other machine or mobile and visit typeanyname.tk

success screenshot

Step 8: Stopping the interactsh-server

If find it very useful that I can easily stop the interactsh-server. The OOB-Server tool does not have any easy way to stop or uninstall the setup. I had to delete the AWS instance and re-install again.

stopping interactsh-server

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store