mim

Release 0.2.43

Man in the middle proxy server

Homepage PyPI Python

License
GPL-3.0
Install
pip install mim==0.2.43

Documentation

MIM Usage

Description

This is a man-in-the-middle proxy server.

Plugins can subscribe to events to read and manipulate requests and responses. A number of plugins are included. It is easy to add more based on these.

Installation

Scripts (run with -h to see usage and options)

Plugins included

option description
--auth Log userids/passwords
--beef Inject beef hook (browser exploitation framework)
--cats Replace images with cats
--favicon Replace favicon with lock symbol
--inject Inject data/injection.html
--kill Kill session on first visit to domain (forces relogin)
--requests Log requests
--sslstrip Replace https with http then proxy links via https
--upsidedown Turn images upsidedown

Alternative ways to send requests to the proxy

  1. Redirect browser
  • proxy.py
  • Set browser proxy settings to point to ip address of proxy PC port 10000
  1. Run arp attack
  • proxy.py
  • users.py to see available machines to target on the local network
  • arp <target> to initiate arp attack on a target ip
  1. Run fake access point
  • fakeap
  • connect to Free Wifi from target pc
  • proxy.py [NOTE: run after fakeAP to set firewall settings]

How to create a plugin

  • Create a module file in plugins folder based on existing plugins
  • Include init function to subscribe to events and initialise
  • Edit the docstring for proxy.py to add the option

Where does it work

  • Tested via usage on a range of websites using proxy settings, arp attack and fakeAP
  • It should never block and has a timeout on web requests

Where does it not work

Arp attack

  • Some security software prevents arp attacks
  • VirtualBox guest that shares mac address with host

HTTPS

  • Https requests typed directly in the address bar will not be intercepted
  • HttpsEverywhere (chrome extension) prevents interception
  • Some websites enforce https via the browser e.g. gmail, facebook
  • Some websites change http links back to https after the page loads e.g. ebay

Incorrect headers or HTML

  • Calling lxml.html.fromstring then tostring can change the page
  • Alternative is to use lxml.etree but this causes issues with other pages

MIM Design

Core files

Built in python2.7 using "twisted.web" and follows this chain:

  • proxy1 (a bash script that runs proxy.py with selected options)

    => Proxy.py

  • proxyserver [listens for connections]

    => ProxyFactory(http.HTTPFactory)

    => Proxy(http.HTTPChannel)

    => Request(http.Request)

  • proxyclient [creates connections to web]

    => ProxyClientFactory(proxy.ProxyClientFactory)

    => ProxyClient(proxy.ProxyClient, TimeoutMixin)

    => internet

Other files

file description
fileserver.py simple file server to serve images
bash.py wrapper for bash commands.
log.txt log of current session.
Plugins folder subscribe to events

Stats

Dependencies
0
Dependent packages
0
Dependent repositories
0
Total releases
33
Latest release
First release
Stars
3
Forks
1
Watchers
1
Contributors
2
Repository size
206 KB
SourceRank
7

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

0.2.43
0.2.42
0.2.40
0.2.39
0.2.38
0.2.37
0.2.36
0.2.35
0.2.34
0.2.33
See all 33 releases

Contributors

simon Check your git settings!


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2022-01-05 07:59:15 UTC

Login to resync this project