search

summitt / Nope-Proxy

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
1.52k stars 236 forks source link

[Wiki] No need to run Burp as root on *NIX* #77

Open kocoten1992 opened 4 months ago

kocoten1992 commented 4 months ago

Hi @summitt ,

There is no need to run Burp as root on NIX, I try this and it work: https://manpages.ubuntu.com/manpages/xenial/man1/authbind.1.html

Also, on linux (ubuntu), it could be many service that would conflict port 53, namely:

  1. if you use systemd-resolved, make sure DNSStubListener=no is set to no
  2. if you are using lxc or libvirt, you may need to disable dnsmasq for those service

For the wiki change, I would recommend:

diff --git a/Home.md b/Home.md
index da81c61..6c2fd9c 100644
--- a/Home.md
+++ b/Home.md
@@ -6,20 +6,20 @@ If you're testing a mobile device or client on a separate machine then all you n

 1. Set the DNS on the client machine (i.e. iphone) to the same IP address that is running BurpSuite and the NoPE Proxy Extension.
 1. On the NoPE Proxy -> Server Config Tab: Select the correct interface from the list. Your current IP address should automatically populate into the 'DNS Response IP' input box.
-1. On the NoPE Proxy -> Server Config Tab: Enter the correct DNS port number. *If your on *NIX then you will need to run Burp as root to be able to enable lower numbered ports like 53, 80, 443.*
+1. On the NoPE Proxy -> Server Config Tab: Enter the correct DNS port number. If your on *NIX*, then you will need to use `authbind` to able run Burp with enable lower numbered ports like 53, 80, 443.
 1. On the NoPE Proxy -> Server Config Tab: Click Start DNS.
-1. On the NoPE Proxy -> Server Config Tab: Click the 'Add 80 & 443 to Burp' button. This will add the HTTP invisible proxies into burp. *If your on *NIX then you will need to run Burp as root to be able to enable lower numbered ports like 53, 80, 443.*
+1. On the NoPE Proxy -> Server Config Tab: Click the 'Add 80 & 443 to Burp' button. This will add the HTTP invisible proxies into burp. If your on *NIX*, then you will need to use `authbind` to able run Burp with enable lower numbered ports like 53, 80, 443.
 1. If the application you're testing is not using any binary protocols then your done.

 ## Basic Set Up for local client. (testing on a single machine)
 NoPE proxy will automatically resolve real host names using the Google DNS server (8.8.8.8). This means you can set you're test machine's DNS server to 127.0.0.1 and NoPE will handle DNS for your system and still be able to resolve real IP addresses. Follow these steps to set up single host testing.

 1. On you test machine set the system DNS server to 127.0.0.1
-1. On the NoPE Proxy -> Server Config Tab: Enter the correct DNS port number. *If your on *NIX then you will need to run Burp as root to be able to enable lower numbered ports like 53, 80, 443.*
+1. On the NoPE Proxy -> Server Config Tab: Enter the correct DNS port number. If your on *NIX*, then you will need to use `authbind` to able run Burp with enable lower numbered ports like 53, 80, 443.
 1. On the NoPE Proxy -> Server Config Tab: **Uncheck** 'Use the above "DNS Response IP" for ALL ...'
 1. On the NoPE Proxy -> Server Config Tab: Set IP address and hostnames to resolve in the 'Custom hosts file'. This follows the same format as any host file. Example: ```127.0.0.1 www.google.com```
 1. On the NoPE Proxy -> Server Config Tab: Click Start DNS.
-1. On the NoPE Proxy -> Server Config Tab: CLick the 'Add 80 & 443 to Burp' button. This will add the HTTP invisible proxies into burp. *If your on *NIX then you will need to run Burp as root to be able to enable lower numbered ports like 53, 80, 443.*
+1. On the NoPE Proxy -> Server Config Tab: CLick the 'Add 80 & 443 to Burp' button. This will add the HTTP invisible proxies into burp. If your on *NIX*, then you will need to use `authbind` to able run Burp with enable lower numbered ports like 53, 80, 443.

P/s: related https://github.com/summitt/Nope-Proxy/issues/76