Forge and replay single TCP packets with mitmproxy

874 Views Asked by Theova At 13 October 2021 at 08:22

I discovered mitmproxy and would like to use it to simulate a replay attack.

The application uses MTProto on top of TCP, and I would like to replay entire MTProto messages.

My idea:

Route traffic from client to server over a proxy
Sniff all TCP packets
Replay single TCP packets

The last part is the difficult part. The forged TCP packet must

increase the sequence number,
recompute the checksum

in order to get accepted.

I tried to use mitmproxy for this, but I only found out how to copy the entire flow, but not single packets.

Is it possible to achieve my goal with mitmproxy? If so, how to forge a single packet? Otherwise: Are there better tools for this attack?

Original Q&A

There are 1 best solutions below

Theova On 14 October 2021 at 09:16

The following add-on does the job for me solution (similar in spirit to Susanka):

class Replayer:
    def __init__(self):
        self.num = 0
        self.saved = None

    def tcp_message(self, flow):
        message = flow.messages[-1]
        if len(str(message)) > 700:
            if self.saved is None:
                self.saved = message.content
            else:
                message.content = self.saved
                self.saved = None


addons = [
    Replayer()
]

Forge and replay single TCP packets with mitmproxy

There are 1 best solutions below

Related Questions in TCP

Related Questions in MITMPROXY

Related Questions in REPLAY

Trending Questions

Popular # Hahtags

Popular Questions