Pivoting for Penetration Testing