This is a comprehensive pivot playbook for moving through compromised networks. It covers SSH tunneling in all variations (local, remote, dynamic, ProxyJump), Chisel for reverse SOCKS proxies, Ligolo-ng for TUN-based transparent routing, and egress-constrained scenarios like DNS tunneling with iodine and ICMP with ptunnel-ng. The decision matrix is the standout piece here, mapping which tool to use based on what's actually allowed outbound (TCP any port, HTTP only, DNS only, etc.). It also handles Windows-specific pivoting with netsh and plink. If you're doing red team work or need to route tools through multi-layer networks, this gives you the syntax and logic for most common scenarios without having to reconstruct it from fragmented blog posts.
npx skills add https://github.com/yaklang/hack-skills --skill tunneling-and-pivoting