Initial working PoC for the Ferret-NG plugin that will replace the SessionHijacker plugin: it will capture cookies and trasparently feed them to the proxy it starts up on port 10010 (by default), this way we just have to connect to the proxy, browse to the same website as the victim and we will automatically hijack their session! \o/

The way MITMf hooks SSLstrip's functions has been modified to improve plugin code readability, additionally corrected some useless function hooks that were placed in early framework realeases and never removed. Replace plugin has been given it's own section in the config file currently the BeedAutorun and Javapwn plugins have to be cleaned up... BrowserProfile plugin's Pinlady code has been updated to the latest version (v0.9.0) and will now detect Flash player's version Javapwn plugin will be renamed to BrowserPwn and will support Flash exploits too , as supposed to only Java exploits Since we now have a built in SMB server, removed options to specify a host in the SMBauth plugin Tweaked the output of some plugins
2025-07-07 13:32:18 -07:00 · 2015-05-11 03:13:45 +02:00 · 2015-05-11 03:13:45 +02:00 · 79025dc77e
commit 79025dc77e
parent d3e509d4cd
33 changed files with 1080 additions and 5488 deletions
--- a/core/sslstrip/ClientRequest.py
+++ b/core/sslstrip/ClientRequest.py
@ -16,7 +16,13 @@
 # USA
 #

-import urlparse, logging, os, sys, random, re, dns.resolver
+import urlparse 
+import logging 
+import os 
+import sys 
+import random
+import re 
+import dns.resolver

 from twisted.web.http import Request
 from twisted.web.http import HTTPChannel
@ -33,7 +39,6 @@ from SSLServerConnection import SSLServerConnection
 from URLMonitor import URLMonitor
 from CookieCleaner import CookieCleaner
 from DnsCache import DnsCache
-from core.sergioproxy.ProxyPlugins import ProxyPlugins

 mitmf_logger = logging.getLogger('mitmf')

@ -52,7 +57,6 @@ class ClientRequest(Request):
        self.hsts          = URLMonitor.getInstance().hsts
        self.cookieCleaner = CookieCleaner.getInstance()
        self.dnsCache      = DnsCache.getInstance()
-        self.plugins       = ProxyPlugins.getInstance()
        #self.uniqueId      = random.randint(0, 10000)
        
        #Use are own DNS server instead of reactor.resolve()
@ -62,9 +66,6 @@ class ClientRequest(Request):
    def cleanHeaders(self):
        headers = self.getAllHeaders().copy()

-        #for k,v in headers.iteritems():
-        #    mitmf_logger.debug("[ClientRequest] Receiving headers: (%s => %s)" % (k, v))
-        
        if self.hsts:

            if 'referer' in headers:
@ -92,8 +93,6 @@ class ClientRequest(Request):
        if 'cache-control' in headers:
            del headers['cache-control']

-        self.plugins.hook()
-
        return headers

    def getPathFromUri(self):
@ -111,7 +110,7 @@ class ClientRequest(Request):

        if os.path.exists(scriptPath): return scriptPath

-        mitmf_logger.warning("Error: Could not find lock.ico")
+        mitmf_logger.warning("[ClientRequest] Error: Could not find lock.ico")
        return "lock.ico"        

    def handleHostResolvedSuccess(self, address):