Đã Hủy

SSL-RESPONSE modification using WebScarab/Burp

This project is to create a script that will use a proxy such as Burp, WebScarab or something similar, and:-

1. intercerpt an SSL-RESPONSE;

2. selectively (based on content), send the SSL-RESPONSE to an obfuscation server using sockets;

3. receive the response back from the obfuscation server, and

4. replace the SSL-RESPONSE with the response from the obfuscation server.

WebScarab uses BeanShell. Burp may use it's own scripting language or there is another solution of a similar nature.

Please respond with you preference for proxy (Burp/WebScarab/etc.) and your skill and knowledge in the field of SSL-RESPONSE interception and manipulation, as well as basic sockets programming in the relevant language .

Key factors to consider:-

1. this service must act as a proxy for a web-browser;

2. the original URL of any SSL website must be preserved, and

3. the obfuscation service must be accessed via sockets.

A Linux VM sever is available where the solution should be installed, configured, tested.

The deliverable is a package that can be installed onto any (common) Linux server, which includes both the chosen proxy server bundle and your SSL interception/modification script, where the address of the obfuscation server ip/port is configurable.

Upon acceptance of a bid, you will be provided with the credentials to the test sever and the ip/port of the obfuscation server.

This is an urgent request and needs to be delivered within the next few days.

This or something very similar is the code that should make the call/response to the obfuscation server with the SSL- RESPONSE :-


import java.net.*;
import java.io.*;
import org.owasp.webscarab.model.Response;

Response response = connection.getResponse();
String cType = response.getHeader("Content-Type");

if (cType != null && cType.endsWith("html")) {

byte[] bytes = response.getContent();
if (bytes != null) {

String SSL_RESPONSE_contents = new String(bytes);

// Get Obfuscation Sever ip/port
String serverName = args[0];
int port = Integer.parseInt(args[1]);
try
{
// Make sockets connection to obfuscation server
Socket client = new Socket(serverName, port);
OutputStream outToServer = client.getOutputStream();
// Write to Socket
DataOutputStream out = new DataOutputStream(outToServer);
out.writeUTF(SSL_RESPONSE_contents);

// Listen for Response
InputStream inFromServer = client.getInputStream();
DataInputStream in = new DataInputStream(inFromServer);

SSL_RESPONSE_contents = in.readUTF();

client.close();

response.setContent(SSL_RESPONSE_contents.getBytes());
connection.setResponse(response);

}catch(IOException e){

e.printStackTrace();

}
}
}

Kỹ năng: Java, Linux

Xem thêm: webscarab burp, web programming using java, vm where, server scripting language, java language for create a website, create your own programming language, webscarab port, webscarab ssl interception, webscarab, basic skill test, test your skill, ssl, sever, obfuscation, java proxy, ssl proxy programming, java based proxy web, programming java solution, create proxy website, something common, linux java script, server ssl, linux script java, test programming skill, port proxy

Về Bên Thuê:
( 3 nhận xét ) Melbourne, Netherlands

Mã Dự Án: #1744855

2 freelancer đang chào giá trung bình $745 cho công việc này

IMSeriousBidder

Hello, I am a senior Java developer, please check your PM Thanks Bing

$740 USD trong 5 ngày
(61 Đánh Giá)
6.7
AR1c8yZ3J

Custom software development - The Administrator removed this message due to advertising which breaches our Terms and Conditions.

$750 USD trong 1 ngày
(0 Đánh Giá)
0.0