deeprox 0.1.1

TLS intercepting web proxy inspired by Burp Suite and Mitmproxy
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134

// const PROXY_CREDS: &str = "qwer:qwer";

use futures::prelude::*;

use http_types::{Body, Request, Response};

use lol_html::{
	doc_text,
	html_content::{ContentType, TextType},
	HtmlRewriter, Settings,
};

use structopt::StructOpt;

use std::{net::SocketAddr, path::PathBuf};

use deeprox::{gen_key_and_cert, proxy::Proxy};

async fn modify_request(mut input: Request) -> Result<Request, ()> {
	// dbg!(&input);

	// let body_bytes = input.take_body().into_bytes().await.map_err(|_| ())?;

	let mut buffer = Vec::new();
	input.read_to_end(&mut buffer).await.map_err(|_| ())?;

	input.insert_header("accept-encoding", "indentity");

	let body = Body::from_bytes(buffer);
	input.set_body(body);

	// dbg!(&input);

	Ok(input)
}

async fn modify_response(mut input: Response) -> Result<Response, ()> {
	// dbg!(&input);

	// let body_bytes = input.take_body().into_bytes().await.map_err(|_| ())?;

	match input.content_type() {
		Some(m) => match m.essence() {
			"text/html" => (),
			_ => return Ok(input),
		},
		_ => return Ok(input),
	}

	let mut buffer = Vec::new();
	input.read_to_end(&mut buffer).await.map_err(|_| ())?;

	let mut output = Vec::new();
	let mut rewriter = HtmlRewriter::try_new(
		Settings {
			element_content_handlers: vec![],
			document_content_handlers: vec![doc_text!(|t| {
				if t.text_type() != TextType::Data {
					return Ok(());
				}
				let s = String::from(t.as_str());
				let s = s.replace("cloud", "fuck");
				let s = s.replace("Cloud", "Fuck");
				t.replace(&s, ContentType::Text);
				Ok(())
			})],
			..Settings::default()
		},
		|c: &[u8]| output.extend_from_slice(c),
	)
	.map_err(|_| ())?;

	match rewriter.write(&buffer).map_err(|_| ()) {
		Ok(_) => (),
		Err(_) => {
			let body = Body::from_bytes(output);
			input.set_body(body);
			return Ok(input);
		}
	};
	match rewriter.end().map_err(|_| ()) {
		Ok(_) => (),
		Err(_) => {
			let body = Body::from_bytes(output);
			input.set_body(body);
			return Ok(input);
		}
	};

	let body = Body::from_bytes(output);
	input.set_body(body);
	Ok(input)
}

#[derive(StructOpt)]
struct GenerateOpt {
	#[structopt(short, default_value = "ca_key.pem")]
	key_path: PathBuf,

	#[structopt(short, default_value = "ca_cert.pem")]
	cert_path: PathBuf,
}

#[derive(StructOpt)]
struct ProxyOpt {
	#[structopt(default_value = "127.0.0.1:8080")]
	address: SocketAddr,

	#[structopt(short, default_value = "ca_key.pem")]
	key_path: PathBuf,

	#[structopt(short, default_value = "ca_cert.pem")]
	cert_path: PathBuf,
}

#[derive(StructOpt)]
enum Opt {
	Generate(GenerateOpt),
	Proxy(ProxyOpt),
}

#[async_std::main]
async fn main() {
	match Opt::from_args() {
		Opt::Generate(o) => gen_key_and_cert(&o.key_path, &o.cert_path).unwrap(),
		Opt::Proxy(o) => {
			let creds = None;
			let mut proxy = Proxy::new(o.address, creds, o.key_path, o.cert_path);
			proxy.edit_request_using(|r| modify_request(r).boxed());
			proxy.edit_response_using(|r| modify_response(r).boxed());
			proxy.start().await.unwrap();
		}
	};
}