Stealth: Network Request Scattering

[cookiengineer]

In order to reduce the typical network traffic correlation attack surface, it is necessary to implement a Ronin functionality for both DNS and HTTP/S traffic.

New Stealth "internet/scatter" Setting:

• If set to direct it tries to route as much traffic as possible through the local internet connection
• If set to proxy it tries to proxy as much traffic as possible through the local TOR proxy
• If set to scatter it tries to scatter traffic as much as possible across the network

Necessary features:

• The Router Middleware needs to be able to do DNS requests when it receives resolve requests for public domains.
• The Request API needs to be able to introduce a padding in the request body that allows to send requests in a randomized manner (scatter or proxy).
• The Request (or Router) API needs to be able to reroute all DNS requests through TOR via DNS over HTTPS (proxy)
• The Request API needs to be able to introduce a network latency artificially, setting the timeout to a higher value and using a setTimeout() with a random offset in order to schedule a network request at a slightly later point in time.