gnh1201/caterpillar
1
0
Fork 0
mirror of https://github.com/gnh1201/caterpillar.git synced 2025-09-06 09:51:06 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update server.py

Browse Source
This commit is contained in:
Namhyeon Go 2024-02-18 04:04:02 +09:00 committed by GitHub
parent d94ca1cf17
commit 41a2c9d48e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 32 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

45
server.py
View File

@ -31,6 +31,8 @@ try:
certdir = config('CERT_DIR') certdir = config('CERT_DIR')
openssl_binpath = config('OPENSSL_BINPATH') openssl_binpath = config('OPENSSL_BINPATH')
client_encoding = config('CLIENT_ENCODING') client_encoding = config('CLIENT_ENCODING')
local_domain = config('LOCAL_DOMAIN')
proxy_pass = config('PROXY_PASS')
except KeyboardInterrupt: except KeyboardInterrupt:
print("\n[*] User has requested an interrupt") print("\n[*] User has requested an interrupt")
print("[*] Application Exiting.....") print("[*] Application Exiting.....")
@ -85,7 +87,7 @@ def conn_string(conn, data, addr):
webserver_pos = temp.find(b'/') webserver_pos = temp.find(b'/')
if webserver_pos == -1: if webserver_pos == -1:
webserver_pos = len(temp) webserver_pos = len(temp)
webserver = "" webserver = b''
port = -1 port = -1
if port_pos == -1 or webserver_pos < port_pos: if port_pos == -1 or webserver_pos < port_pos:
port = 80 port = 80
@ -100,6 +102,13 @@ def conn_string(conn, data, addr):
print("[*] Exception on parsing the header of %s. Because of %s" % (str(addr[0]), str(e))) print("[*] Exception on parsing the header of %s. Because of %s" % (str(addr[0]), str(e)))
return return
# if it is reverse proxy
if local_domain != '' and data.find(("\nHost: %s\n" % (local_domain)).encode(client_encoding)) > -1:
print ("[*] ** Detected the reverse proxy request: %s" % (local_domain))
scheme, _webserver, _port = proxy_pass.encode(client_encoding).split(b':')
webserver = _webserver[2:]
port = int(_port.decode(client_encoding))
proxy_server(webserver, port, scheme, method, url, conn, addr, data) proxy_server(webserver, port, scheme, method, url, conn, addr, data)
def proxy_connect(webserver, conn): def proxy_connect(webserver, conn):
@ -130,19 +139,23 @@ def proxy_connect(webserver, conn):
return (conn, data) return (conn, data)
def proxy_check_filtered(response, webserver, port): def proxy_check_filtered(data, webserver, port, url):
filtered = False filtered = False
# allowed conditions
if url.find(b'/api') > -1:
return filtered
# convert to text # convert to text
text = '' text = ''
if len(response) > buffer_size * 10: if len(data) > buffer_size * 10:
# maybe it is a multimedia data # maybe it is a multimedia data
text = response[0:buffer_size].decode(client_encoding, errors='ignore') text = data[0:buffer_size].decode(client_encoding, errors='ignore')
else: else:
# maybe it is a text only data # maybe it is a text only data
text = response.decode(client_encoding, errors='ignore') text = data.decode(client_encoding, errors='ignore')
# dump response data # dump data
#print ("****************************") #print ("****************************")
#print (text) #print (text)
#print ("****************************") #print ("****************************")
@ -156,9 +169,9 @@ def proxy_check_filtered(response, webserver, port):
if filtered: if filtered:
print ("[*] Filtered response from %s:%s" % (webserver.decode(client_encoding), str(port))) print ("[*] Filtered response from %s:%s" % (webserver.decode(client_encoding), str(port)))
#print ("[*] ====== start response data =====") #print ("[*] ====== start preview data =====")
#print ("%s" % (text)) #print ("%s" % (text))
#print ("[*] ====== end response data =====") #print ("[*] ====== end preview data =====")
return filtered return filtered
@ -179,8 +192,14 @@ def proxy_server(webserver, port, scheme, method, url, conn, addr, data):
except Exception as e: except Exception as e:
raise Exception("SSL negotiation failed. (%s:%s) %s" % (webserver.decode(client_encoding), str(port), str(e))) raise Exception("SSL negotiation failed. (%s:%s) %s" % (webserver.decode(client_encoding), str(port), str(e)))
response = b'' # check request data
if proxy_check_filtered(data, webserver, port, url):
conn.sendall(b"HTTP/1.1 403 Forbidden\n\n{\"status\":403}")
conn.close()
return
# make response data
response = b''
if server_url == "localhost": if server_url == "localhost":
sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
@ -202,12 +221,12 @@ def proxy_server(webserver, port, scheme, method, url, conn, addr, data):
if not chunk: if not chunk:
break break
response += chunk response += chunk
#if proxy_check_filtered(response, webserver, port): #if proxy_check_filtered(response, webserver, port, url):
# break # break
#conn.send(chunk) #conn.send(chunk)
i += 1 i += 1
if not proxy_check_filtered(response, webserver, port): if not proxy_check_filtered(response, webserver, port, url):
conn.sendall(response) conn.sendall(response)
else: else:
#add_domain_route(webserver.decode(client_encoding), '127.0.0.1') #add_domain_route(webserver.decode(client_encoding), '127.0.0.1')
@ -241,12 +260,12 @@ def proxy_server(webserver, port, scheme, method, url, conn, addr, data):
relay = requests.post(server_url, headers=proxy_data['headers'], data=raw_data, stream=True) relay = requests.post(server_url, headers=proxy_data['headers'], data=raw_data, stream=True)
for chunk in relay.iter_content(chunk_size=buffer_size): for chunk in relay.iter_content(chunk_size=buffer_size):
response += chunk response += chunk
#if proxy_check_filtered(response, webserver, port): #if proxy_check_filtered(response, webserver, port, url):
# break # break
#conn.send(chunk) #conn.send(chunk)
i += 1 i += 1
if not proxy_check_filtered(response, webserver, port): if not proxy_check_filtered(response, webserver, port, url):
conn.sendall(response) conn.sendall(response)
else: else:
#add_domain_route(webserver.decode(client_encoding), '127.0.0.1') #add_domain_route(webserver.decode(client_encoding), '127.0.0.1')