@ricepancakes said:
Imo it’s never a good idea to completely disable the firewall on your machine.
99.99% of the time I’d agree, however I’d make an exception for a system I as was using as an “attack” host, either HTB or wherever.
Realistically this shouldn’t be a production machine and most of the time the security controls are going to get in your way, even if it as simple as the firewall dropping ICMP Destination Unreachable messages so your recon tools get confused.
The idea was much better explained by the Hack Naked podcast and is mentioned in this post from the awesome Black Hills Information Security team: Are You Really Hacking Naked? - Black Hills Information Security