A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.
Example uses:
- Use as a local DNS server to intercept and modify IoT device traffic.
- Use as an internet based DNS authority server to test 3rd party websites for SSRF, blind XSS and other vulnerabilities.
Features:
- Simple regex replacements and responses.
- Apply middlewares to all or matching requests (HTTP, SSL and DNS).
- Changes to, or the addition of new configuration files does not require a restart of the server.
Default configuration includes examples for DNS Rebinding attacks (files/routes/30_dnsrebind.json), alerting middleware (files/routes/30_alert_middleware.json) and responding to ACMEv2 dns-01 challenges (files/routes/10_letsencrypt.json).
In order to start the servers use the following command:
$ python3 server.py <domain>In order to enable HTTPS connections certificate and key files must be generated and stored at files/keys/domain.crt and files/keys/domain.key respectively.
dns_localhost.json
[
{
"protocol" : "dns",
"route" : ".*",
"type" : "A",
"response" : "127.0.0.1"
},
{
"protocol" : "dns",
"route" : ".*",
"type" : "AAAA",
"response" : "::1"
}
]http_static.json
[
{
"protocol" : "http",
"route" : "/.*",
"path" : "/wwwroot/static.html"
}
]http_forward.json
[
{
"protocol" : "http",
"route" : "/example/.*",
"forward" : "https://www.example.com/",
"recreate_url" : false,
"replace" : [
{
"pattern" : "[Ee]xample",
"replacement" : "Whoot"
}
]
}
]http_httpbin.json
[
{
"protocol" : "http",
"route" : "/httpbin/.*",
"path" : "./scripts/httpbin.py"
}
]dns_ipv4response.json
{
"protocol" : "dns",
"route" : "(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?).ip.{domain}",
"type" : "A",
"response" : "$1.$2.$3.$4"
}