squid-imposter | Phishing attack w/HTML5 offline cache framework | Proxy library
kandi X-RAY | squid-imposter Summary
kandi X-RAY | squid-imposter Summary
Project makes it easy to create Squid-based proxy injecting your own content to chosen website URLs. Modified content is then persisted in client’s browser even when the client no longer connects through your proxy thanks to HTML5 Offline cache features. Injected content may for example be used to form a phishing attack during penetration test. This is a port of HTML5 offline cache poisoning features introduced in Imposter to Squid/Apache/PHP setup. Imposter: by Lavakumar Kuppan Port by Krzysztof Kotowicz .
Support
Quality
Security
License
Reuse
Top functions reviewed by kandi - BETA
- Extract information from user agent string
- Send the request to the client
- Decode punycode encoded string
- Create a cookie from a string
- Send a handshake
- Factory method to create a Zend_Uri_Uri object
- Checks if a value is valid
- Check date format
- Load a class
- Write a HTTP request
squid-imposter Key Features
squid-imposter Examples and Code Snippets
Community Discussions
Trending Discussions on Proxy
QUESTION
This is a question around how a proxy should behave with HTTPS requests. If there are 2 users behind a proxy and both go to https://example.com one after another, can the proxy reuse the existing TCP connection created with example.com earlier for user1.
Both TCP and HTTPS are different protocols, so it doesn't seem like it should affect anything, and in practice it doesn't as well.
Is there something in existing TLS implementations that might not like this kind of behavior of having two different sessions over the same connection? Would this be a bad idea from a security perspective to have the same TCP connection for different users?
...ANSWER
Answered 2021-Aug-11 at 01:56You mean if two HTTP clients make requests to a reverse HTTP proxy, could the proxy reuse TCP connections to the HTTP server?
Yes, absolutely. This is called connection pooling and it is common in practice. The proxy opens a pool of persistent connections with each backend endpoint. Then, the proxy queues requests and each request gets sent on an available TCP connection.
From a TLS perspective, if the proxy is an HTTP proxy (L7), clients perform TLS handshakes with the proxy, not the backend web servers and, hence, there's no problem. However, if the proxy operates at L4, TLS termination must occur downstream (TLS pass-through), which poses complication.
My current understanding is that L4 proxies maintain 1:1 connections with backends. Meaning, each incoming connection has a corresponding outgoing connection to a backend, which removes our ability to reuse connections and leverage connection pooling.
For example, NGINX does this:
NGINX maintains a “cache” of keepalive connections – a set of idle keepalive connections to the upstream servers – and when it needs to forward a request to an upstream, it uses an already established keepalive connection from the cache rather than creating a new TCP connection.
Load Balancing with NGINX and NGINX Plus, Part 2
Helpful resources
QUESTION
I want to set proxies to my crawler. I'm using requests module and Beautiful Soup. I have found a list of API links that provide free proxies with 4 types of protocols.
All proxies with 3/4 protocols work (HTTP, SOCKS4, SOCKS5) except one, and thats proxies with HTTPS protocol. This is my code:
...ANSWER
Answered 2021-Sep-17 at 16:08I did some research on the topic and now I'm confused why you want a proxy for HTTPS.
While it is understandable to want a proxy for HTTP, (HTTP is unencrypted) HTTPS is secure.
Could it be possible your proxy is not connecting because you don't need one?
I am not a proxy expert, so I apologize if I'm putting out something completely stupid.
I don't want to leave you completely empty-handed though. If you are looking for complete privacy, I would suggest a VPN. Both Windscribe and RiseUpVPN are free and encrypt all your data on your computer. (The desktop version, not the browser extension.)
While this is not a fully automated process, it is still very effective.
QUESTION
I use mitmproxy to gather intel from outbound AS2 (HTTP) requests leaving our network. The schema goes like this:
ANSWER
Answered 2022-Mar-02 at 07:37It's been a while since I've tried to solve this using a custom addon and it seems to work fine so I'll share it here:
https://gist.github.com/jsmucr/24cf0859dd7c9bba8eb2817d7b0bf4b6
This approach has a bit of disadvantage and that's the fact that it doesn't check if the peer certificate changes.
QUESTION
I am trying to execute an SSIS package using a Credential and Proxy - it works fine with a user with a SysAdmin role and we want to avoid using SysAdmin.
I have followed all the steps to create a Credential and Proxy and set up the permissions for the user in msdb and SSISDb tables and in the Security -> logins
I have followed the steps in the below links as a guide:-
- Run an SSIS Package Under a Different Account
- Running a SSIS Package from SQL Server Agent Using a Proxy Account
- SQL Server Agent - Running SSIS Package with Proxy
Proxy -> properties -> Principals
When I run the job I get the below error - looks like a permission issue
Unable to start execution of step 1 (Reason: Could not get proxy data for proxy_id = 198_. The step failed.
What am I missing?
...ANSWER
Answered 2022-Feb-21 at 19:37As you mentioned in the comments, you are using an SQL Server login as a proxy account. While in the Microsoft documentation they mentioned that:
SQL Server Agent proxies use credentials to store information about Windows user accounts. The user-specified in the credential must have "Access this computer from the network" permission (SeNetworkLogonRight) on the computer on which SQL Server is running.
I suggest following one of the following articles to set up an SQL Server agent proxy:
QUESTION
I am trying to configure a nginx Docker container to serve the Angular application on its root path (which works so far) and make the backend via a proxy on /api available.
I've read multiple threads on Stackoverflow and some blogs, but no configuration worked so far. If I call my app on / the Angular app works. When I try to call /api on the same url it gets redirected to / and shows no content -- I guess the Angular router got some route it cannot handle. But Nginx should catch that route before the Angular app gets called. How do I do that?
I am not sure what is wrong. Do you see the error in my config?
...ANSWER
Answered 2022-Jan-26 at 13:32I would use the syntax below to let Nginx know this comes before your generic location location /.
QUESTION
I'm trying to create a reverse proxy to a CONNECT-based HTTP proxy. The user who wants to use the proxy just treats machine A as an HTTP proxy. It works the following way:
machine Bopens a TCP socket tomachine A.- On
machine A, a TCP socket is exposed on a port and all the incoming data is tunneled tomachine B(io.Copy). - On
machine B, all the data is tunneled to the local HTTP server and the socket tomachine A.
Essentially this is a reverse-proxy behind an HTTP proxy. The reason it's this complex is because the HTTP proxy is behind NAT (on machine B) and therefore not accessible directly. The use case is being able to host an HTTP proxy behind a NAT.
Machine A tunnel (Go):
...ANSWER
Answered 2022-Jan-10 at 19:54When you do
QUESTION
I read that HTTP proxy should be removing hop HTTP headers (https://www.freesoft.org/CIE/RFC/2068/143.htm)
It makes sense since some of these headers are connection-related.
The question is. Is this RFC applicable for explicit proxy only or should be it be done on transparent HTTP proxies too?
Just to give you an example. Let say a client does HTTP call and it has an explicit proxy set. However, there is a transparent proxy in the middle. So, the overall pipeline looks like that
...ANSWER
Answered 2021-Dec-28 at 21:01Transparent proxies don’t exist.
As far as the HTTP RFC is concerned, there is simply no such thing. The specification does not recognise the concept. A client (A) may connect to a server (C) to fetch or modify a resource, or it may connect to a proxy (B) to have the latter do so on its behalf. In the former case, the hop-by-hop headers regulate the connection between the client and the server; in the latter, they regulate the connection between the client and the proxy. If the proxy connects to the server to serve the request, it has to manage its own hop-by-hop headers for the proxy–server link.
Anything else you add beyond that is simply not a party to the protocol and its presence should not influence how it operates. Whether (A)’s connection to either (B) or (C) (or (B)’s connection to (C)) is mediated by something else is immaterial. All that matters is that when (A) chooses to send a request to (B), it should receive the same resource that it would if it chose to make a request to (C) directly. (B) or (C) don’t even have to be single hosts; they may themselves pass requests though any number of intermediary layers.
For all it matters, the ‘transparent proxy’ may as well be a SOCKS proxy, in which case it will not modify any HTTP headers at all, because it cannot even be sure whether what it forwards is HTTP in the first place.
QUESTION
I've been looking around trying to find a solution, but nothing has worked. I have this code:
...ANSWER
Answered 2021-Dec-27 at 00:44You need to remove the colon from proxy URL, the redundant one is before the user.
I'm virtually sure that all problem is you've reached the limit of requests and the vendor forbids you to send more. You can test it with curl:
QUESTION
I have video files hosted on the CDN, the video file is encrypted. So I need the decrypt it before play it in the browser. But the web video tag has no interface to modify the media stream.
So I want to run a proxy in the client side with javascript to proxy the media stream request, and decrypt the stream before feet to the video tag.
Is it possible?
By math-chen's answer, I have tryed below code, but when I paly it, the video keep spin and not render the frame like below image.
I use a very small unencrypted video file out.mp4, so it can be loaded by once.
ANSWER
Answered 2021-Dec-17 at 09:29it does not need a proxy
QUESTION
It has been discussed many times on Stackoverflow that by default WebRTC technology leaks your real IP even if your using a proxy to browse the web. What I haven't seen discussed is whether this requires the end user to click a button to enable this kind of leak or whether the leak occurs regardless of any action taken by the user.
For example, when you go to Express VPN they require you press a button to test for WebRTC leak. My question is - is this done for privacy reasons or somehow the button activates WebRTC tech so it can leak your IP?
In other words, assuming you never need to use WebRTC tech (just browser a blog or eCommerce shop) and all you do is click a few links - can a website still detect your real IP through WebRTC?
Thanks
...ANSWER
Answered 2021-Nov-16 at 18:59Yes, a browser can detect your public IP address using WebRTC.
No, the leak is not reliant on your button interaction.
Recently, I found an unpatched github repo webrtc-ip, which can leak a user's public IP address using WebRTC. This is powerful because you cannot trace it, as nothing is shown in the Networks tab.
Sadly, this leak does not work for private IPs, due to the gradual shift to mDNS (at least for WebRTC), which is described completely in this great blog. Anyways,a here's a working demo:
https://webrtc-ip.herokuapp.com/
I am not sure if this leaks your true IP address even if you are using a proxy, but feel free to test it out.
Community Discussions, Code Snippets contain sources that include Stack Exchange Network
Vulnerabilities
No vulnerabilities reported
Install squid-imposter
PHP requires the Visual C runtime (CRT). The Microsoft Visual C++ Redistributable for Visual Studio 2019 is suitable for all these PHP versions, see visualstudio.microsoft.com. You MUST download the x86 CRT for PHP x86 builds and the x64 CRT for PHP x64 builds. The CRT installer supports the /quiet and /norestart command-line switches, so you can also script it.
Support
Reuse Trending Solutions
Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items
Find more librariesStay Updated
Subscribe to our newsletter for trending solutions and developer bootcamps
Share this Page
