github/MITMf
1
0
Fork 0
mirror of https://github.com/byt3bl33d3r/MITMf.git synced 2025-08-14 02:37:06 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

merged sslstrip+ into sslstrip, tweaked hsts bypass performance

Browse source
This commit is contained in:
byt3bl33d3r 2014-12-16 02:03:02 +01:00
commit 642fa9cb6a
14 changed files with 234 additions and 954 deletions
Download patch file Download diff file Expand all files Collapse all files

24
mitmf.py
View file

@ -33,7 +33,7 @@ if __name__ == "__main__":
sgroup.add_argument("-f", "--favicon", action="store_true", help="Substitute a lock favicon on secure requests.")
sgroup.add_argument("-k", "--killsessions", action="store_true", help="Kill sessions in progress.")
sgroup.add_argument('-d', '--disable-proxy', dest='disproxy', action='store_true', default=False, help='Disable the SSLstrip Proxy')
sgroup.add_argument("-b", "--bypass-hsts", dest='hsts', action="store_true", help="Enable HSTS bypass")
sgroup.add_argument("-b", "--bypass-hsts", dest='hsts', action="store_true", default=False, help="Enable HSTS bypass")
#Initialize plugins
plugins = []
@ -89,29 +89,11 @@ if __name__ == "__main__":
if args.disproxy:
ProxyPlugins.getInstance().setPlugins(load)
elif args.hsts:
from libs.sslstripplus.StrippingProxy import StrippingProxy
from libs.sslstripplus.URLMonitor import URLMonitor
URLMonitor.getInstance().setFaviconSpoofing(args.favicon)
CookieCleaner.getInstance().setEnabled(args.killsessions)
ProxyPlugins.getInstance().setPlugins(load)
strippingFactory = http.HTTPFactory(timeout=10)
strippingFactory.protocol = StrippingProxy
reactor.listenTCP(args.listen, strippingFactory)
print "\n[*] sslstrip v%s by Moxie Marlinspike running..." % sslstrip_version
print "[*] sslstrip+ by Leonardo Nve running..."
print "[*] sergio-proxy v%s online..." % sergio_version
else:
from libs.sslstrip.StrippingProxy import StrippingProxy
from libs.sslstrip.URLMonitor import URLMonitor
args.clients = False # temporary
URLMonitor.getInstance().setValues(args.favicon, args.clients)
URLMonitor.getInstance().setValues(args.favicon, args.hsts)
CookieCleaner.getInstance().setEnabled(args.killsessions)
ProxyPlugins.getInstance().setPlugins(load)
@ -121,6 +103,8 @@ if __name__ == "__main__":
reactor.listenTCP(args.listen, strippingFactory)
print "\n[*] sslstrip v%s by Moxie Marlinspike running..." % sslstrip_version
if args.hsts:
print "[*] sslstrip+ by Leonardo Nve running..."
print "[*] sergio-proxy v%s online" % sergio_version
reactor.run()