GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → wuchangming → Https Mitm Proxy Handbook

wuchangming / Https Mitm Proxy Handbook

Licence: mit
基于Node.js的HTTPS MITM(中间人)代理的原理和实现

Programming Languages

javascript
184084 projects - #8 most used programming language

Labels

nodejsmitm

Projects that are alternatives of or similar to Https Mitm Proxy Handbook

elmocut
Eye candy ARP spoofer for Windows
Stars: ✭ 85 (-73.52%)
Mutual labels:  mitm
iyov
Web proxy for http(s) for developers to analyze data between client and servers based on workerman, especailly for app developers.
Stars: ✭ 27 (-91.59%)
Mutual labels:  mitm
Wirespy
Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).
Stars: ✭ 293 (-8.72%)
Mutual labels:  mitm
mps
MPS is a high-performance HTTP(S) proxy library that supports forward proxies, reverse proxies, man-in-the-middle proxies, tunnel proxies, Websocket proxies. MPS 是一个高性能HTTP(s)中间代理库,它支持正向代理、反向代理、中间人代理、隧道代理、Websocket代理
Stars: ✭ 64 (-80.06%)
Mutual labels:  mitm
mitm-python
A simple as possible man in the middle written in python using scapy
Stars: ✭ 6 (-98.13%)
Mutual labels:  mitm
emuiibo
Virtual amiibo (amiibo emulation) system for Nintendo Switch
Stars: ✭ 584 (+81.93%)
Mutual labels:  mitm
cute-proxy
A Man-In-The-Middle Proxy as Fiddle and Charles, using Netty, JavaFX
Stars: ✭ 62 (-80.69%)
Mutual labels:  mitm
Hackdroid
Android Apps, Roms and Platforms for Pentesting
Stars: ✭ 310 (-3.43%)
Mutual labels:  mitm
mitm
👨🏼‍💻 ‎‎‎‏‏ A customizable man-in-the-middle TCP proxy.
Stars: ✭ 44 (-86.29%)
Mutual labels:  mitm
Wifi Pumpkin Deprecated
DEPRECATED, wifipumpkin3 -> https://github.com/P0cL4bs/wifipumpkin3
Stars: ✭ 2,964 (+823.36%)
Mutual labels:  mitm
mitm
A simple yet effective python3 script to perform DNS spoofing via ARP poisoning
Stars: ✭ 23 (-92.83%)
Mutual labels:  mitm
service-identity
Service Identity Verification for Python
Stars: ✭ 78 (-75.7%)
Mutual labels:  mitm
websploit
Websploit is an advanced MITM framework.
Stars: ✭ 105 (-67.29%)
Mutual labels:  mitm
MITM-cheatsheet
All MITM attacks in one place.
Stars: ✭ 655 (+104.05%)
Mutual labels:  mitm
Mitmf
Framework for Man-In-The-Middle attacks
Stars: ✭ 3,277 (+920.87%)
Mutual labels:  mitm
nfcproxy
用两个安卓手机的nfc功能截取iso14443交互数据 fork by https://github.com/nfcproxy/NFCProxy
Stars: ✭ 30 (-90.65%)
Mutual labels:  mitm
Raven-Storm
Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.
Stars: ✭ 235 (-26.79%)
Mutual labels:  mitm
Modlishka
Modlishka. Reverse Proxy.
Stars: ✭ 3,634 (+1032.09%)
Mutual labels:  mitm
Hetty
Hetty is an HTTP toolkit for security research.
Stars: ✭ 3,596 (+1020.25%)
Mutual labels:  mitm
mitm-play
Man in the middle using Playwright
Stars: ✭ 13 (-95.95%)
Mutual labels:  mitm
View All Similar Projects ➔

基于Node.js的HTTPS MITM(中间人)代理的原理和实现

部署在公网的服务面临着越来越多的流量劫持、运营商劫持事件,为了能更好的保障信息的安全性和完整性,HTTPS得到了越来越多的重视。基于此原因,本文章尝试从另一个视角,通过使用Node.js实现一个简单的HTTPS中间人代理的方式,阐述HTTPS是如何保证网络信息的安全,并且分析用户的何种行将会导致HTTPS的安全性失效。

MITM(中间人)代理的技术手段对于软件开发者并不陌生,在实际开发和测试中经常会使用。调试接口、查看HTTP请求与响应时使用的http抓包调试工具如:FiddlerCharles,就是基于该原理实现的。

本文会更侧重于代码的实现,每一步都提供详细的可运行的js代码实现

问题反馈

如本文有原理上或者是代码层面的错误,再或者是任何方面的问题,都欢迎提问或 Pull Request!

第〇节:思路分析

第一节:HTTP中间人代理实现

第二节:如何代理HTTPS请求

第三节:HTTPS数字证书和数字证书链

第四节:一个简易的HTTPS代理

第五节:总结

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].