search

D00Movenok / BounceBack

↕️🤫 Stealth redirector for your red team operation security
MIT License
607 stars 65 forks source link

Disable certificate check on proxy target url #8

Closed BlackSnufkin closed 10 months ago

BlackSnufkin commented 10 months ago

Bug:

2023-11-06T15:22:47Z DBG http-get match from=192.168.1.146 match= proxy=https_proxy rule=malleable_https_traffic 2023-11-06T15:22:47Z ERR Can't make proxy request error="Get \"https://127.0.0.1:8443/test?param=aGVsbG8gd29ybGQsZnJvbSBibGFja3NudWZraW4K/test": tls: failed to verify certificate: x509: cannot validate certificate for 127.0.0.1 because it doesn't contain any IP SANs" from=192.168.1.146 proxy=https_proxy

Fix: /BounceBack/Internals/proxy/http/proxy.go Line 81:


    if p.TLSConfig != nil {
        p.TLSConfig.InsecureSkipVerify = true // Add this line to skip certificate verification
        p.client.Transport = &http.Transport{
            TLSClientConfig:   p.TLSConfig,
            ForceAttemptHTTP2: true,
        }
        p.server.TLSConfig = p.TLSConfig
    }

    return p, nil
D00Movenok commented 10 months ago

Thank you for your bug report! Accidentally deleted this in the previous version of BounceBack. Fixed, closing issue.