Skip to content

procoder17/goproxy-spoof-tls-ja3

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
certs
certs
 
 
examples
examples
 
 
ext
ext
 
 
regretable
regretable
 
 
test_data
test_data
 
 
transport
transport
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
actions.go
actions.go
 
 
all.bash
all.bash
 
 
ca.pem
ca.pem
 
 
certs.go
certs.go
 
 
chunked.go
chunked.go
 
 
counterecryptor.go
counterecryptor.go
 
 
counterecryptor_test.go
counterecryptor_test.go
 
 
ctx.go
ctx.go
 
 
dispatcher.go
dispatcher.go
 
 
doc.go
doc.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
google6015528f356a3a43.html
google6015528f356a3a43.html
 
 
h2.go
h2.go
 
 
https.go
https.go
 
 
key.pem
key.pem
 
 
logger.go
logger.go
 
 
proxy.go
proxy.go
 
 
proxy_test.go
proxy_test.go
 
 
responses.go
responses.go
 
 
signer.go
signer.go
 
 
signer_test.go
signer_test.go
 
 
websocket.go
websocket.go
 
 

Repository files navigation

Introduction

This project is forked from GoProxy (https://godoc.org/github.com/procoder17/goproxy-spoof-tls-ja3)

GoDoc Join the chat at https://gitter.im/procoder17/goproxy-spoof-tls-ja3 Status

I have been working on Evilginx3 project for updating myself and met the TLS fingerprint issues. In order to bypass TLS/JA3 fingerprint, I have used CycleTLS (https://github.com/Danny-Dasilva/CycleTLS) Of course, I have forked CycleTLS and updated some code for GoProxy.

How to use this project

    
    import (
        "log"

        "github.com/procoder17/CycleTLSForGoProxy/cycletls"
        http3 "github.com/Danny-Dasilva/fhttp"
    )

    func CreateTlspoofClient(ja3 string, ua string) (client http3.Client) {
        browser := cycletls.Browser{
            JA3:                ja3,
            UserAgent:          ua,
            Cookies:            nil,
            InsecureSkipVerify: true,
        }

        timeout := 15

        client, err := cycletls.NewClient(
            browser,
            timeout,
            false,
            ua,
            "", //request.Options.Proxy,
        )
        if err != nil {
            log.Fatal(err)
        }

        return client
    }


    // Select JA3 and User-Agent for spoofing.
    ja3 := "771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49162-49161-49171-49172-51-57-47-53-10,0-23-65281-10-11-35-16-5-51-43-13-45-28-21,29-23-24-25-256-257,0"
	ua := "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:87.0) Gecko/20100101 Firefox/87.0"

	tlspoofClient := CreateTlspoofClient(ja3, ua)

    // update evilginx3's OnRequest() function like the following.
	p.Proxy.OnRequest().
		DoFunc(func(req *http.Request, ctx *goproxy.ProxyCtx) (*http.Request, *http.Response) {

			ps := &goproxy.ProxySession{
				SessionId:      "",
				Created:        false,
				PhishDomain:    "",
				PhishletName:   "",
				Index:          -1,
				CycleTlsClient: &tlspoofClient,
			}

			ctx.UserData = ps

            //.........................
        })

About

goproxy update for bypassing TLS/JA3 fingerprint

Topics

tls phishing fingerprint goproxy bypass ja3

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages