Shulou(Shulou.com)05/31 Report--

This article shows you how to capture arbitrary http and https traffic through Proxifier, V2ray and Newwifi. The content is concise and easy to understand. It will definitely make your eyes shine. I hope you can gain something from the detailed introduction of this article.

1. introduced

Usually, when a device cannot set a proxy, it is difficult to modify its contract or change the package. In the past, we used arp deception to guide traffic, but below I introduce a new method.

For example: A is a normal user, B is an attacker, and they are all connected to route C. (D-proxy server)

B wants to modify user A's traffic

We can use arp to spoof A's traffic to B to attack, but I found in the actual test that if A's traffic is too large, it is easy to disconnect, which will cause A's network to be unstable, and the forwarded packets are not easy to handle and many other problems.

So I changed my mind and let router C connect to proxy server D, so that devices connected to route C will go to proxy server, and then directly use fiddler or burpsuite to directly process HTTP and HTTPS traffic inside proxy server D.

2. Create proxy server

(Proxy D)

Link: https://pan.baidu.com/s/1Dh7DF5AfIhNUobMXgpAdqg Extract Code: bbvs

Download it from the link above and modify the config file inside.

Change ip to 127.0.0.1 to ip of your own server, because it is open to the outside, and then modify the port

My amendment reads as follows

Run v2ray.exe

3. Proximer, Fiddler settings

Note that this step is also performed on proxy server D

fiddler or burpsuite is set to direct, which means they connect directly to the internet or they go around in circles.

default action https

ip is 127.0.0.1

port 8080

The port here is 8080 because I changed the listening port in my fiddler to 8080.

If you need to grab https packets

Decrypt is checked, but the local fiddler certificate of the trust server is required.

4. NewWifi Settings

(Route C)

Select sock5 in the ssr plug-in below

Connect to the server created in the first step

ip 192.168.1.234 is A, let go of the agent, we can catch A's package

This is the packet captured from A.

The above is how to capture arbitrary http and https traffic through Proxifier, V2ray and Newwifi. Have you learned any knowledge or skills? If you want to learn more skills or enrich your knowledge reserves, please pay attention to the industry information channel.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.