Open xplshn opened 4 months ago
Not currently supported, and I don't think it's even possible for the real GFW anymore. With HTTPS as the default and mandatory you can no longer transparently hijack a connection.
Since they intervened all phones, they currently just need to force companies to add a certificate and that's it, far as the people know, the connection is "safe". I think MITMPROXY can be used as reference on how to implement this
The Great Cannon is supposed to be when China's GFW inserts Javascript into every request and can weaponize every web browser and device connected to the internet as a DDOS botnet.