Intercepting http/https traffic?

P

picaso1332016-04-19 18:32:15

Python

picaso133, 2016-04-19 18:32:15

Hello, here is an example, I have a dns / dhcp server (ubuntu) and clients (windows) connected to it, I need to intercept the traffic and put it in db with python, there were no problems until I got to https and then the problem is the connection is secure. How to make traffic appear as http is there a ready-made solution in python? Do not think that for malicious purposes only for statistics who spends time and on what.

Reply

Answer the question

In order to leave comments, you need to log in

4 answer(s)

Z

Zzzz9, 2016-04-19
@Zzzz9

For statistics, there is an IP address and port, and to open the contents of the packets, this is to look through the keyhole, maybe I want to pick my nose, what's your business.

F

Fixid, 2016-04-19
@Fixid

In fact, you need to perform a MITM attack.
If figuratively:
You have access to clients, you can import a self-signed certificate and start it through a proxy. On the proxy, replace the certificate with your own and decrypt the traffic, then transfer the data further via the already normal https.
BUT, if desired, and google, it is easy to protect yourself from mitm

R

res2001, 2016-04-19
@res2001

You somehow complicate everything. Everything is already written for you. Use squid, it can do https.
If you need to put everything in the database, then you can parse the squid logs - this is much easier than breaking https.

V

Vlad Zhivotnev, 2016-04-19
@inkvizitor68sl

Only by replacing the certificate, google about transparent squid + ssl bump
You need to install your root certificate on all client machines.